General
-
Target
f53f7495b072ccf9680d83825ecf7aa12164ae781c46f76f5a376fe279f77826.exe
-
Size
52KB
-
Sample
241122-lh1b8ayjh1
-
MD5
7ae3de44f03cf6217d606e9a63cb0169
-
SHA1
b51e6b1bafa72ceb694da2ac7340066794d857e0
-
SHA256
f53f7495b072ccf9680d83825ecf7aa12164ae781c46f76f5a376fe279f77826
-
SHA512
326167886d3cd06b07918a2dbb1dbcf3c12e787e6adeb3b815b1b76ae105f89817e6136c8dd214a0bb3e8527e945f9855b0d8f57737fa0c8c6844e3ce57eb665
-
SSDEEP
768:PuWnCwQ1HqVgPyks7rt1jskr/v/m89S3rkC6R+wibw52Tzp+2:Pm9qVgP0hNskr3mbkC6R+Xp+2
Malware Config
Targets
-
-
Target
f53f7495b072ccf9680d83825ecf7aa12164ae781c46f76f5a376fe279f77826.exe
-
Size
52KB
-
MD5
7ae3de44f03cf6217d606e9a63cb0169
-
SHA1
b51e6b1bafa72ceb694da2ac7340066794d857e0
-
SHA256
f53f7495b072ccf9680d83825ecf7aa12164ae781c46f76f5a376fe279f77826
-
SHA512
326167886d3cd06b07918a2dbb1dbcf3c12e787e6adeb3b815b1b76ae105f89817e6136c8dd214a0bb3e8527e945f9855b0d8f57737fa0c8c6844e3ce57eb665
-
SSDEEP
768:PuWnCwQ1HqVgPyks7rt1jskr/v/m89S3rkC6R+wibw52Tzp+2:Pm9qVgP0hNskr3mbkC6R+Xp+2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2