General

  • Target

    a699f95dd0b29ab9f716d23bf4c54ae83dad2714f3e544334c3d034ebea9c045.exe

  • Size

    96KB

  • Sample

    241112-rsvsdavbqh

  • MD5

    f84dc5e8512db7351e7b4d6514a59eb8

  • SHA1

    be7d4236ac4bbf154cc99a7de2d8b66396923351

  • SHA256

    a699f95dd0b29ab9f716d23bf4c54ae83dad2714f3e544334c3d034ebea9c045

  • SHA512

    803b848a199545f487078d5d2c591a556422f9bb94fbbba165945c16b9444c3e622e945d17325dd829ac972efa5f2586f1d034a2393807fa9d26d654e45459a2

  • SSDEEP

    1536:4JeSb9w8Q89H1UbLSLeocTzFJ0T72VpIZ:Gi4eBTzFJ0T728Z

Malware Config

Targets

    • Target

      a699f95dd0b29ab9f716d23bf4c54ae83dad2714f3e544334c3d034ebea9c045.exe

    • Size

      96KB

    • MD5

      f84dc5e8512db7351e7b4d6514a59eb8

    • SHA1

      be7d4236ac4bbf154cc99a7de2d8b66396923351

    • SHA256

      a699f95dd0b29ab9f716d23bf4c54ae83dad2714f3e544334c3d034ebea9c045

    • SHA512

      803b848a199545f487078d5d2c591a556422f9bb94fbbba165945c16b9444c3e622e945d17325dd829ac972efa5f2586f1d034a2393807fa9d26d654e45459a2

    • SSDEEP

      1536:4JeSb9w8Q89H1UbLSLeocTzFJ0T72VpIZ:Gi4eBTzFJ0T728Z

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks