General

  • Target

    setup.exe

  • Size

    30.4MB

  • Sample

    241110-q2shyaxgnj

  • MD5

    34b08c3388e880f9acc656379f95741b

  • SHA1

    d8f1cf7bcb3a1e681a2e7362bd362b467b745571

  • SHA256

    c3273c47f3aafa0f8de22d1e8ca24cafca867cb42104973c0e7d823a35b062ab

  • SHA512

    164e2fcfc96a830c7c415fc073d24dc5a812e50b390bddcfef6abc8507c47b85bf78d91e5494edab8b93764e75676d3192c2324f7f8a92067f4993759ccaf0e6

  • SSDEEP

    786432:ldqgqJ034bYw9aa9Z9R2M9Lv6kUd7eMeq:OlJ0+Yg9Z98M9LvnUd7eMeq

Malware Config

Targets

    • Target

      setup.exe

    • Size

      30.4MB

    • MD5

      34b08c3388e880f9acc656379f95741b

    • SHA1

      d8f1cf7bcb3a1e681a2e7362bd362b467b745571

    • SHA256

      c3273c47f3aafa0f8de22d1e8ca24cafca867cb42104973c0e7d823a35b062ab

    • SHA512

      164e2fcfc96a830c7c415fc073d24dc5a812e50b390bddcfef6abc8507c47b85bf78d91e5494edab8b93764e75676d3192c2324f7f8a92067f4993759ccaf0e6

    • SSDEEP

      786432:ldqgqJ034bYw9aa9Z9R2M9Lv6kUd7eMeq:OlJ0+Yg9Z98M9LvnUd7eMeq

    • Creates new service(s)

    • Possible privilege escalation attempt

    • Modifies file permissions

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks