General
-
Target
c000d29db32fe80f21e5b77386ff8f0ed69716bb96feb342f8b8f3bbae4bebe5
-
Size
92KB
-
Sample
241018-c3xx6asapd
-
MD5
17bb0c995b2baba0f3434a0bfa2232ac
-
SHA1
cb9cc3c59e4a2998f2265450897950155c337de2
-
SHA256
c000d29db32fe80f21e5b77386ff8f0ed69716bb96feb342f8b8f3bbae4bebe5
-
SHA512
0c7edc9d3d9b97265625d82246817d39f7c911180275329bfad4364a67773b0c1e039b92206bb4d506b982dd6391c8a73c48235df58ee674f03fb42496869be2
-
SSDEEP
1536:UzJTG4EVT8JNenyIGmvcTlfbfwKipwFJ0T72mocT:vxYhTxx5FJ0T72mBT
Malware Config
Targets
-
-
Target
c000d29db32fe80f21e5b77386ff8f0ed69716bb96feb342f8b8f3bbae4bebe5
-
Size
92KB
-
MD5
17bb0c995b2baba0f3434a0bfa2232ac
-
SHA1
cb9cc3c59e4a2998f2265450897950155c337de2
-
SHA256
c000d29db32fe80f21e5b77386ff8f0ed69716bb96feb342f8b8f3bbae4bebe5
-
SHA512
0c7edc9d3d9b97265625d82246817d39f7c911180275329bfad4364a67773b0c1e039b92206bb4d506b982dd6391c8a73c48235df58ee674f03fb42496869be2
-
SSDEEP
1536:UzJTG4EVT8JNenyIGmvcTlfbfwKipwFJ0T72mocT:vxYhTxx5FJ0T72mBT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2