General
-
Target
c6b6ee376a1f0220210f07692cd05d020dfc4968acce2d23200766059e1051f1.exe
-
Size
276KB
-
Sample
241122-h4m28ssmbq
-
MD5
982d617c92da71f27cd62b3e2fad1937
-
SHA1
997156b9254fcd83798f3fa7ff392a1a95883534
-
SHA256
c6b6ee376a1f0220210f07692cd05d020dfc4968acce2d23200766059e1051f1
-
SHA512
c9e769c2a10f0ccc4e6261e042e4d8de5c9dd465cc2e6aa7734cec6a48a45ff3fde3b19f93a0c04fe76547bde52217a38380ae7223799be51f37b84054d0c436
-
SSDEEP
6144:toJD3PPCDMzJu749QepWyBLTURx44IhR22:tpwzJuZeseLTUR6o2
Malware Config
Targets
-
-
Target
c6b6ee376a1f0220210f07692cd05d020dfc4968acce2d23200766059e1051f1.exe
-
Size
276KB
-
MD5
982d617c92da71f27cd62b3e2fad1937
-
SHA1
997156b9254fcd83798f3fa7ff392a1a95883534
-
SHA256
c6b6ee376a1f0220210f07692cd05d020dfc4968acce2d23200766059e1051f1
-
SHA512
c9e769c2a10f0ccc4e6261e042e4d8de5c9dd465cc2e6aa7734cec6a48a45ff3fde3b19f93a0c04fe76547bde52217a38380ae7223799be51f37b84054d0c436
-
SSDEEP
6144:toJD3PPCDMzJu749QepWyBLTURx44IhR22:tpwzJuZeseLTUR6o2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2