General
-
Target
55c93487c7931738b38e461a11f89185c963013204da728625b52520a31eeedcN.exe
-
Size
48KB
-
Sample
241120-ydlz9aserj
-
MD5
536e09e9ec1386fb8692f426eb8391e0
-
SHA1
c03e1e9c59466e159810512f9c50b389814bf2a4
-
SHA256
55c93487c7931738b38e461a11f89185c963013204da728625b52520a31eeedc
-
SHA512
3bf719bf97dd5f7cdae265afc0df622f3f03e9e6499488e460682f2bb33e74b63d67cc6d47fbc9f67ee7369733dc151eba6cd3e83c35b037f1de4cf0fd82a2f5
-
SSDEEP
768:qrQN0XnVvbrWQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MK:qrtv5HTwKqWAxcpvcqu74+J
Malware Config
Targets
-
-
Target
55c93487c7931738b38e461a11f89185c963013204da728625b52520a31eeedcN.exe
-
Size
48KB
-
MD5
536e09e9ec1386fb8692f426eb8391e0
-
SHA1
c03e1e9c59466e159810512f9c50b389814bf2a4
-
SHA256
55c93487c7931738b38e461a11f89185c963013204da728625b52520a31eeedc
-
SHA512
3bf719bf97dd5f7cdae265afc0df622f3f03e9e6499488e460682f2bb33e74b63d67cc6d47fbc9f67ee7369733dc151eba6cd3e83c35b037f1de4cf0fd82a2f5
-
SSDEEP
768:qrQN0XnVvbrWQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MK:qrtv5HTwKqWAxcpvcqu74+J
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2