General
-
Target
176ba22675dfb1ab3df5c05a00ef9bbec6c21f96a5495744de74cb7958fb6d12.exe
-
Size
160KB
-
Sample
241120-2b6tesvakf
-
MD5
05446a4c2405cf7856514c81c62ec2df
-
SHA1
155015f830da87d90df2609f4a3b5e1ab2a32612
-
SHA256
176ba22675dfb1ab3df5c05a00ef9bbec6c21f96a5495744de74cb7958fb6d12
-
SHA512
6e75f6649aa867e5a474c33894b3f24270c11218100bacded33a4fe4686d66773baafe8c9823465d7a4e14ffab0853f5fbf5fb7456851d64a79f01ffcd58a914
-
SSDEEP
1536:1L1Q85upNKAoQqI6vmJgGMct4V0TtnYmy1DZeKJe:1kNaU6vh64VunBy11e
Malware Config
Targets
-
-
Target
176ba22675dfb1ab3df5c05a00ef9bbec6c21f96a5495744de74cb7958fb6d12.exe
-
Size
160KB
-
MD5
05446a4c2405cf7856514c81c62ec2df
-
SHA1
155015f830da87d90df2609f4a3b5e1ab2a32612
-
SHA256
176ba22675dfb1ab3df5c05a00ef9bbec6c21f96a5495744de74cb7958fb6d12
-
SHA512
6e75f6649aa867e5a474c33894b3f24270c11218100bacded33a4fe4686d66773baafe8c9823465d7a4e14ffab0853f5fbf5fb7456851d64a79f01ffcd58a914
-
SSDEEP
1536:1L1Q85upNKAoQqI6vmJgGMct4V0TtnYmy1DZeKJe:1kNaU6vh64VunBy11e
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2