General
-
Target
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2N
-
Size
37KB
-
Sample
241023-tp31pa1ekk
-
MD5
5e9efb9929ac59be9bce45c2a2e5fde0
-
SHA1
c783156f16ece44285f8a91efefd6219d7f5a0ad
-
SHA256
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2
-
SHA512
0b372f0ceda55a57e0dae75c480bb96d313895f7e323296614806bf3259e5854241aa996a71109dc006b4f9ffb5842905acce18c92aa436e5f940cc29606469f
-
SSDEEP
768:irE0cr3xNg6Aut4bE0nvNS5ZHcWh+UNj07wbLwM6jHBB9D3xfjL2x4xC7g8QcrJb:E3WpAjHIHcO+UNS8GBx3xb6x4l8Qc1b
Static task
static1
Behavioral task
behavioral1
Sample
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2N
-
Size
37KB
-
MD5
5e9efb9929ac59be9bce45c2a2e5fde0
-
SHA1
c783156f16ece44285f8a91efefd6219d7f5a0ad
-
SHA256
afdfc7eec304ee8588408bbf531373f3a0be0fd5c440eb580df5fd90b9d27bd2
-
SHA512
0b372f0ceda55a57e0dae75c480bb96d313895f7e323296614806bf3259e5854241aa996a71109dc006b4f9ffb5842905acce18c92aa436e5f940cc29606469f
-
SSDEEP
768:irE0cr3xNg6Aut4bE0nvNS5ZHcWh+UNj07wbLwM6jHBB9D3xfjL2x4xC7g8QcrJb:E3WpAjHIHcO+UNS8GBx3xb6x4l8Qc1b
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Impair Defenses: Safe Mode Boot
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Impair Defenses
1Safe Mode Boot
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1