General

  • Target

    99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe

  • Size

    60KB

  • Sample

    241117-lwz9daxcma

  • MD5

    d64b6a726dbcce00b6e6a56a960e65b2

  • SHA1

    4dff0a72b684bd156780612d8fbaf55c7914a915

  • SHA256

    99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d

  • SHA512

    e036dcc4468ee2a9ee7a7117915c40626a6e960a014b8d5825ade4f5d43634c77917545b3906771c070d5c9ad90575582e933766729cc019b83e86ccd3a177ae

  • SSDEEP

    768:3ZZg/T7s3RHl4mPUML1CfzO3ICFIk2d+JFIkRcrNKe4nqCYn6Qqq7spG6P8Lx4NO:3qkGY3NjdLwOiNMWBWMVP6D5xNe

Malware Config

Targets

    • Target

      99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe

    • Size

      60KB

    • MD5

      d64b6a726dbcce00b6e6a56a960e65b2

    • SHA1

      4dff0a72b684bd156780612d8fbaf55c7914a915

    • SHA256

      99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d

    • SHA512

      e036dcc4468ee2a9ee7a7117915c40626a6e960a014b8d5825ade4f5d43634c77917545b3906771c070d5c9ad90575582e933766729cc019b83e86ccd3a177ae

    • SSDEEP

      768:3ZZg/T7s3RHl4mPUML1CfzO3ICFIk2d+JFIkRcrNKe4nqCYn6Qqq7spG6P8Lx4NO:3qkGY3NjdLwOiNMWBWMVP6D5xNe

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks