General
-
Target
b9c017cf2922988189e1fa00c295909cfbde419695e423920588cd349666a209N.exe
-
Size
84KB
-
Sample
241119-xa3yxsvlfr
-
MD5
02f81c2fc512165bd19634f87ebf6b10
-
SHA1
6e596ed85919aae33bc4e51fe980d7a7e7cc097d
-
SHA256
b9c017cf2922988189e1fa00c295909cfbde419695e423920588cd349666a209
-
SHA512
01360786acb954d7d7c22a2a887276aba27e352386d59b565e73604a36d9787bc777db193eb34a0b1e3e23ac7ef387967f53d6f17850834676eff7109d0a41d7
-
SSDEEP
768:DyV+hOvQbzkwzrQgzo41R8DIWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Alw:DoFv2vk41Rx76Ezh/vYlJwAitTB3lw
Malware Config
Targets
-
-
Target
b9c017cf2922988189e1fa00c295909cfbde419695e423920588cd349666a209N.exe
-
Size
84KB
-
MD5
02f81c2fc512165bd19634f87ebf6b10
-
SHA1
6e596ed85919aae33bc4e51fe980d7a7e7cc097d
-
SHA256
b9c017cf2922988189e1fa00c295909cfbde419695e423920588cd349666a209
-
SHA512
01360786acb954d7d7c22a2a887276aba27e352386d59b565e73604a36d9787bc777db193eb34a0b1e3e23ac7ef387967f53d6f17850834676eff7109d0a41d7
-
SSDEEP
768:DyV+hOvQbzkwzrQgzo41R8DIWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Alw:DoFv2vk41Rx76Ezh/vYlJwAitTB3lw
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2