General
-
Target
c2f94ec6ce671c7bdf5d3089ac5cd19dac39cad048eac862e6f16177c00fd541
-
Size
92KB
-
Sample
241120-dyq5gszhqk
-
MD5
64991138d474a854f9db996ec0e77ec7
-
SHA1
3fc59601b3ab63af58369cff88f33b036b9de3ff
-
SHA256
c2f94ec6ce671c7bdf5d3089ac5cd19dac39cad048eac862e6f16177c00fd541
-
SHA512
03129eb5286a20c28d81f3cd411172d6e4557378d19a830c4f53ea628b4308e6bc05b868048ea5cb3418aa07058127059092c2b5d2e70ffed01ff56d58bbd92f
-
SSDEEP
1536:UBQh44EVT8JNenyIGmvcTlfbfwKipwFJ0T72mocT:Z4xYhTxx5FJ0T72mBT
Malware Config
Targets
-
-
Target
c2f94ec6ce671c7bdf5d3089ac5cd19dac39cad048eac862e6f16177c00fd541
-
Size
92KB
-
MD5
64991138d474a854f9db996ec0e77ec7
-
SHA1
3fc59601b3ab63af58369cff88f33b036b9de3ff
-
SHA256
c2f94ec6ce671c7bdf5d3089ac5cd19dac39cad048eac862e6f16177c00fd541
-
SHA512
03129eb5286a20c28d81f3cd411172d6e4557378d19a830c4f53ea628b4308e6bc05b868048ea5cb3418aa07058127059092c2b5d2e70ffed01ff56d58bbd92f
-
SSDEEP
1536:UBQh44EVT8JNenyIGmvcTlfbfwKipwFJ0T72mocT:Z4xYhTxx5FJ0T72mBT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2