General

  • Target

    9ddfd510f8f4b218212b43813b3bb9437abc655cc8c33a50cd30ae6ee5629d93N

  • Size

    168KB

  • Sample

    241109-gvx1eazajf

  • MD5

    ad76cbce7a0e6abe51e17cd084177030

  • SHA1

    d8740461c3894758413c15ccfb67c217ab3b2d3a

  • SHA256

    9ddfd510f8f4b218212b43813b3bb9437abc655cc8c33a50cd30ae6ee5629d93

  • SHA512

    b05c4c69c8ef0e6e7750429366fb029ad8ffa5b44105e261f8ea2cb917b884f46956446e9ae69f6a9b12b0941c0263c5e92674a5d0bb4ce1b21467f3eb1afd30

  • SSDEEP

    768:w7MRzhznsEnBJNVVutayVpSQKjdbyo/SkL6fYYhXJwYMIifzEhELL6IM2Lz6:w7MBB7nFVDyxo/SkL6fxWFd0EvpMw

Malware Config

Targets

    • Target

      9ddfd510f8f4b218212b43813b3bb9437abc655cc8c33a50cd30ae6ee5629d93N

    • Size

      168KB

    • MD5

      ad76cbce7a0e6abe51e17cd084177030

    • SHA1

      d8740461c3894758413c15ccfb67c217ab3b2d3a

    • SHA256

      9ddfd510f8f4b218212b43813b3bb9437abc655cc8c33a50cd30ae6ee5629d93

    • SHA512

      b05c4c69c8ef0e6e7750429366fb029ad8ffa5b44105e261f8ea2cb917b884f46956446e9ae69f6a9b12b0941c0263c5e92674a5d0bb4ce1b21467f3eb1afd30

    • SSDEEP

      768:w7MRzhznsEnBJNVVutayVpSQKjdbyo/SkL6fYYhXJwYMIifzEhELL6IM2Lz6:w7MBB7nFVDyxo/SkL6fxWFd0EvpMw

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks