General
-
Target
f1379e47a3057b97f37fc62ef22034d6bc663c644984232d7b17ca816c677d48N.exe
-
Size
32KB
-
Sample
241121-lj3hzavqdm
-
MD5
f573b7d9ccf4a52cbe9fd4f239995e60
-
SHA1
9c21494577229bb7ccd770ce2fc5eb04b2882113
-
SHA256
f1379e47a3057b97f37fc62ef22034d6bc663c644984232d7b17ca816c677d48
-
SHA512
86c289f97277e6b73ec61db2ed4e3cf5eb44dd64c56022b0e412bf6d31afe77e067edeea448f87472a8bfd852cca744ac08728dacd19282a02ab6fc2db1a8988
-
SSDEEP
768:UVahIdmVIBW+rvNY52j15oB19mPHXRHrMWNCSGcdH8zevc:UUhIdmVIBW+zZwB19CR55+Cvc
Malware Config
Targets
-
-
Target
f1379e47a3057b97f37fc62ef22034d6bc663c644984232d7b17ca816c677d48N.exe
-
Size
32KB
-
MD5
f573b7d9ccf4a52cbe9fd4f239995e60
-
SHA1
9c21494577229bb7ccd770ce2fc5eb04b2882113
-
SHA256
f1379e47a3057b97f37fc62ef22034d6bc663c644984232d7b17ca816c677d48
-
SHA512
86c289f97277e6b73ec61db2ed4e3cf5eb44dd64c56022b0e412bf6d31afe77e067edeea448f87472a8bfd852cca744ac08728dacd19282a02ab6fc2db1a8988
-
SSDEEP
768:UVahIdmVIBW+rvNY52j15oB19mPHXRHrMWNCSGcdH8zevc:UUhIdmVIBW+zZwB19CR55+Cvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2