General

  • Target

    6dec4791461e681600784efabc9187728c4071a586f265ec452795407c106551N.exe

  • Size

    96KB

  • Sample

    241112-rwlc4svcmh

  • MD5

    ccbe19304ffd4b52a42104b31640d580

  • SHA1

    26017361e91614b282b8870250824ea46b40f4ce

  • SHA256

    6dec4791461e681600784efabc9187728c4071a586f265ec452795407c106551

  • SHA512

    d4cadaf056e6e90b50c4337f9ea51f682c7c225306c3e1b97df0be8eca51d53932303975685c34893c687dcb9225eb0a885d7a557906c416e062d5546532abc3

  • SSDEEP

    1536:jnBWOOpdVwmdFGynSAad6VocGYJXezCCnOq444K4I4i404R4p1VcvsJOpPpMm4V8:lvMV5n/ad6nJuXSut/Tdvd+hXV/vU3vo

Malware Config

Targets

    • Target

      6dec4791461e681600784efabc9187728c4071a586f265ec452795407c106551N.exe

    • Size

      96KB

    • MD5

      ccbe19304ffd4b52a42104b31640d580

    • SHA1

      26017361e91614b282b8870250824ea46b40f4ce

    • SHA256

      6dec4791461e681600784efabc9187728c4071a586f265ec452795407c106551

    • SHA512

      d4cadaf056e6e90b50c4337f9ea51f682c7c225306c3e1b97df0be8eca51d53932303975685c34893c687dcb9225eb0a885d7a557906c416e062d5546532abc3

    • SSDEEP

      1536:jnBWOOpdVwmdFGynSAad6VocGYJXezCCnOq444K4I4i404R4p1VcvsJOpPpMm4V8:lvMV5n/ad6nJuXSut/Tdvd+hXV/vU3vo

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks