General
-
Target
c2ac33411106629f5fb003c7bf07bf3e72c2677a36623a2f79461c83be56e40aN.exe
-
Size
84KB
-
Sample
241122-mq8t1ayqav
-
MD5
b51f423096bc1337f256f531cfab8650
-
SHA1
958fb4a72f0196f7b6572de631b92d6dc43b1335
-
SHA256
c2ac33411106629f5fb003c7bf07bf3e72c2677a36623a2f79461c83be56e40a
-
SHA512
fd52d51930d33900224404661b77c051944bdcb4ede881fa827bcd162b46fe4bd5096b0edb08ffa59b735b3ceeb092495fa515586ce42fda25c7e31d88f6b5d4
-
SSDEEP
768:DyV+hOvMhEwzfKgoIp2IWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7AlR:DoFvky2j76Ezh/vYlJwAitTB3lR
Malware Config
Targets
-
-
Target
c2ac33411106629f5fb003c7bf07bf3e72c2677a36623a2f79461c83be56e40aN.exe
-
Size
84KB
-
MD5
b51f423096bc1337f256f531cfab8650
-
SHA1
958fb4a72f0196f7b6572de631b92d6dc43b1335
-
SHA256
c2ac33411106629f5fb003c7bf07bf3e72c2677a36623a2f79461c83be56e40a
-
SHA512
fd52d51930d33900224404661b77c051944bdcb4ede881fa827bcd162b46fe4bd5096b0edb08ffa59b735b3ceeb092495fa515586ce42fda25c7e31d88f6b5d4
-
SSDEEP
768:DyV+hOvMhEwzfKgoIp2IWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7AlR:DoFvky2j76Ezh/vYlJwAitTB3lR
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2