General

  • Target

    119a065f07370bc3292e01561af3157287eb9262ed3e1c1936843255082ed0ceN

  • Size

    156KB

  • Sample

    241109-fljkzsyamf

  • MD5

    8f80c007f81f8a6a58645ab2373f9060

  • SHA1

    8616efbb186375a2c15e2dde7fb1fcdf200d5aa2

  • SHA256

    119a065f07370bc3292e01561af3157287eb9262ed3e1c1936843255082ed0ce

  • SHA512

    91effca91b5b9c9b1024529219489d844453b2b6dc34326ab4b9cf6f3f30c9b7d72a31c9f0754d451e0e5192bfa802f611c4548150b76e35d4217c1dfbadb21c

  • SSDEEP

    3072:8noxLFxOpMS7yJuu4TrVlpT3rZy93E3ipMdIyH+Y8DuALIXTa4oQZiE8VW:/xtfJuu4l3rZy93UipMd9+Y8DuZaWms

Malware Config

Targets

    • Target

      119a065f07370bc3292e01561af3157287eb9262ed3e1c1936843255082ed0ceN

    • Size

      156KB

    • MD5

      8f80c007f81f8a6a58645ab2373f9060

    • SHA1

      8616efbb186375a2c15e2dde7fb1fcdf200d5aa2

    • SHA256

      119a065f07370bc3292e01561af3157287eb9262ed3e1c1936843255082ed0ce

    • SHA512

      91effca91b5b9c9b1024529219489d844453b2b6dc34326ab4b9cf6f3f30c9b7d72a31c9f0754d451e0e5192bfa802f611c4548150b76e35d4217c1dfbadb21c

    • SSDEEP

      3072:8noxLFxOpMS7yJuu4TrVlpT3rZy93E3ipMdIyH+Y8DuALIXTa4oQZiE8VW:/xtfJuu4l3rZy93UipMd9+Y8DuZaWms

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks