General
-
Target
e589d23b30b40dbab32ed4e503d4b182d46f67f3fe3c6dd02cc85f4b6ea27222
-
Size
64KB
-
Sample
241121-mkbx3ssapk
-
MD5
313fa5bfa5c24080021329e6b1685afd
-
SHA1
fc2ae1175641d4d08e9fd72f9787ab90c7030ed6
-
SHA256
e589d23b30b40dbab32ed4e503d4b182d46f67f3fe3c6dd02cc85f4b6ea27222
-
SHA512
06555823e2c5eef198943c7318e4766294d27163ff715bdd206628fa62012767a44bbd0014f01d9ca535938d982b03291163a9812f105d551421e3488075a408
-
SSDEEP
768:jU/Hdq9rR+ObXe04H7cHPHYmug6UXQm1dIZE2ocOT77eo:j7RtSHyj6S3T77J
Malware Config
Targets
-
-
Target
e589d23b30b40dbab32ed4e503d4b182d46f67f3fe3c6dd02cc85f4b6ea27222
-
Size
64KB
-
MD5
313fa5bfa5c24080021329e6b1685afd
-
SHA1
fc2ae1175641d4d08e9fd72f9787ab90c7030ed6
-
SHA256
e589d23b30b40dbab32ed4e503d4b182d46f67f3fe3c6dd02cc85f4b6ea27222
-
SHA512
06555823e2c5eef198943c7318e4766294d27163ff715bdd206628fa62012767a44bbd0014f01d9ca535938d982b03291163a9812f105d551421e3488075a408
-
SSDEEP
768:jU/Hdq9rR+ObXe04H7cHPHYmug6UXQm1dIZE2ocOT77eo:j7RtSHyj6S3T77J
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2