General
-
Target
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe
-
Size
60KB
-
Sample
241117-lwz9daxcma
-
MD5
d64b6a726dbcce00b6e6a56a960e65b2
-
SHA1
4dff0a72b684bd156780612d8fbaf55c7914a915
-
SHA256
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d
-
SHA512
e036dcc4468ee2a9ee7a7117915c40626a6e960a014b8d5825ade4f5d43634c77917545b3906771c070d5c9ad90575582e933766729cc019b83e86ccd3a177ae
-
SSDEEP
768:3ZZg/T7s3RHl4mPUML1CfzO3ICFIk2d+JFIkRcrNKe4nqCYn6Qqq7spG6P8Lx4NO:3qkGY3NjdLwOiNMWBWMVP6D5xNe
Static task
static1
Behavioral task
behavioral1
Sample
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d.exe
-
Size
60KB
-
MD5
d64b6a726dbcce00b6e6a56a960e65b2
-
SHA1
4dff0a72b684bd156780612d8fbaf55c7914a915
-
SHA256
99eec8035b444182bcd68bc49a9b4d62717d2a0e29725c8b4a4055e35f31205d
-
SHA512
e036dcc4468ee2a9ee7a7117915c40626a6e960a014b8d5825ade4f5d43634c77917545b3906771c070d5c9ad90575582e933766729cc019b83e86ccd3a177ae
-
SSDEEP
768:3ZZg/T7s3RHl4mPUML1CfzO3ICFIk2d+JFIkRcrNKe4nqCYn6Qqq7spG6P8Lx4NO:3qkGY3NjdLwOiNMWBWMVP6D5xNe
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2