General
-
Target
09e1a93254061a6030863e6717e7e7af2425de58d2f74f92123fc10389832b69
-
Size
31KB
-
Sample
241120-yhkmzssfpm
-
MD5
2dbbfa3d43fcc1f9372862b09aa1c691
-
SHA1
32473a1a97d918ffb998846b3ec644188b9c8fa3
-
SHA256
09e1a93254061a6030863e6717e7e7af2425de58d2f74f92123fc10389832b69
-
SHA512
53383621d431910a01cfae06983241c018a03874095622f3632a1d46f6a9c62fb6c0bb2afb365d5d78af3965f691f753bfceabef63dd61805b6166c82c63e3cf
-
SSDEEP
768:bWj3dfcZIDhC/uWxDVWl8zHPHXyXHCzcHHvzQBdi9vc:bWuIZmVWl4vUv4Wvc
Malware Config
Targets
-
-
Target
09e1a93254061a6030863e6717e7e7af2425de58d2f74f92123fc10389832b69
-
Size
31KB
-
MD5
2dbbfa3d43fcc1f9372862b09aa1c691
-
SHA1
32473a1a97d918ffb998846b3ec644188b9c8fa3
-
SHA256
09e1a93254061a6030863e6717e7e7af2425de58d2f74f92123fc10389832b69
-
SHA512
53383621d431910a01cfae06983241c018a03874095622f3632a1d46f6a9c62fb6c0bb2afb365d5d78af3965f691f753bfceabef63dd61805b6166c82c63e3cf
-
SSDEEP
768:bWj3dfcZIDhC/uWxDVWl8zHPHXyXHCzcHHvzQBdi9vc:bWuIZmVWl4vUv4Wvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2