General

  • Target

    e1f0976b4d36ad037aaeebb13ae486cc55dc95102ad4da004866f594408bd4c4.exe

  • Size

    52KB

  • Sample

    241112-rndy3axnap

  • MD5

    23ba198af04c0b4ac6faa0195d6ca3a1

  • SHA1

    135d720ceb33f20b5ed20844174afeb44c321fb0

  • SHA256

    e1f0976b4d36ad037aaeebb13ae486cc55dc95102ad4da004866f594408bd4c4

  • SHA512

    1bda32e6c566da7b5aecff565f32cd765c42c3a6c2d70db6d2279d5f2c6e08524055d7d3fa38e5cf9b453ac122add78ff05612dfd87d52c18c12c1eabed77e65

  • SSDEEP

    768:uHj3dfoZ5LzEdDVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKj:uHy5LgJVWl4vUv4WvcsFFoHxIj

Malware Config

Targets

    • Target

      e1f0976b4d36ad037aaeebb13ae486cc55dc95102ad4da004866f594408bd4c4.exe

    • Size

      52KB

    • MD5

      23ba198af04c0b4ac6faa0195d6ca3a1

    • SHA1

      135d720ceb33f20b5ed20844174afeb44c321fb0

    • SHA256

      e1f0976b4d36ad037aaeebb13ae486cc55dc95102ad4da004866f594408bd4c4

    • SHA512

      1bda32e6c566da7b5aecff565f32cd765c42c3a6c2d70db6d2279d5f2c6e08524055d7d3fa38e5cf9b453ac122add78ff05612dfd87d52c18c12c1eabed77e65

    • SSDEEP

      768:uHj3dfoZ5LzEdDVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKj:uHy5LgJVWl4vUv4WvcsFFoHxIj

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks