General
-
Target
f9e3fc85d1dc4ccd69fe85d125cc6269af8fc86a877f27484525d368c15f97aa.exe
-
Size
48KB
-
Sample
241122-rc27hssjft
-
MD5
c1d3d2bb476dbe351c4f99578a0d4769
-
SHA1
4b083a6fa91ea465b244f396d8fe5f2a65a8aae1
-
SHA256
f9e3fc85d1dc4ccd69fe85d125cc6269af8fc86a877f27484525d368c15f97aa
-
SHA512
2390fa1c35baddf69a572c538a49aad994d1770172b8544ad07724b7581a2ad986925491296f69457d4908850589f46961788bcc7fdf65a1897cc4f7f9c796d9
-
SSDEEP
768:qdhIN0XbRedKu1QeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKh:qdjQKpHTwKqWAxcpvcqu74+Jh
Malware Config
Targets
-
-
Target
f9e3fc85d1dc4ccd69fe85d125cc6269af8fc86a877f27484525d368c15f97aa.exe
-
Size
48KB
-
MD5
c1d3d2bb476dbe351c4f99578a0d4769
-
SHA1
4b083a6fa91ea465b244f396d8fe5f2a65a8aae1
-
SHA256
f9e3fc85d1dc4ccd69fe85d125cc6269af8fc86a877f27484525d368c15f97aa
-
SHA512
2390fa1c35baddf69a572c538a49aad994d1770172b8544ad07724b7581a2ad986925491296f69457d4908850589f46961788bcc7fdf65a1897cc4f7f9c796d9
-
SSDEEP
768:qdhIN0XbRedKu1QeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKh:qdjQKpHTwKqWAxcpvcqu74+Jh
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2