General
-
Target
d36da0708a5fe3e3f1b1c0885c80b69e3e9726572c458329c3d100163603ab08N.exe
-
Size
31KB
-
Sample
241121-a2m1fswgqe
-
MD5
6b2cac42e5035ace5e839818590717b0
-
SHA1
9ab4a1836ba640aa35e8ea4721d760647f65470a
-
SHA256
d36da0708a5fe3e3f1b1c0885c80b69e3e9726572c458329c3d100163603ab08
-
SHA512
c6496e72fcb323e9c1f2d234b9bf29f32d21223d07db9bb1a07d25f820018e4f1a63a4772be547e569bcda366cae309a33d0e90a3a7fae688aeed6d8b882750c
-
SSDEEP
768:qF5KLZ/vbDEj7R/IfAW6wVmuHXJHdzTC/Wc8HEzHvc:qF5SZbDEj7RQfd6wVBpGpRTvc
Malware Config
Targets
-
-
Target
d36da0708a5fe3e3f1b1c0885c80b69e3e9726572c458329c3d100163603ab08N.exe
-
Size
31KB
-
MD5
6b2cac42e5035ace5e839818590717b0
-
SHA1
9ab4a1836ba640aa35e8ea4721d760647f65470a
-
SHA256
d36da0708a5fe3e3f1b1c0885c80b69e3e9726572c458329c3d100163603ab08
-
SHA512
c6496e72fcb323e9c1f2d234b9bf29f32d21223d07db9bb1a07d25f820018e4f1a63a4772be547e569bcda366cae309a33d0e90a3a7fae688aeed6d8b882750c
-
SSDEEP
768:qF5KLZ/vbDEj7R/IfAW6wVmuHXJHdzTC/Wc8HEzHvc:qF5SZbDEj7RQfd6wVBpGpRTvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2