General
-
Target
bb09c53cfccf927d15b7a35793c384ea0860a89119589ccc80bb0f4e41cadd9a.exe
-
Size
31KB
-
Sample
241122-rp79asykan
-
MD5
663655a323a137425f9063c75c428ab2
-
SHA1
830a88bc6e8cfccbcee352cc2fffbd739484249b
-
SHA256
bb09c53cfccf927d15b7a35793c384ea0860a89119589ccc80bb0f4e41cadd9a
-
SHA512
7376f429cd0a4cb03cce632b570de78ed229c8c7ab157f2db9e7af5bd4bb9a89db5ddf0b753b236a8966ab37f0d0ff2cdf3aaee7a2a458033d7f5275234460cf
-
SSDEEP
768:St5KLZ/vbDEj7R7D35uvTW6wVmuHXJHdzTC/Wc8HEzHvcO:St5SZbDEj7R335yq6wVBpGpRTvcO
Malware Config
Targets
-
-
Target
bb09c53cfccf927d15b7a35793c384ea0860a89119589ccc80bb0f4e41cadd9a.exe
-
Size
31KB
-
MD5
663655a323a137425f9063c75c428ab2
-
SHA1
830a88bc6e8cfccbcee352cc2fffbd739484249b
-
SHA256
bb09c53cfccf927d15b7a35793c384ea0860a89119589ccc80bb0f4e41cadd9a
-
SHA512
7376f429cd0a4cb03cce632b570de78ed229c8c7ab157f2db9e7af5bd4bb9a89db5ddf0b753b236a8966ab37f0d0ff2cdf3aaee7a2a458033d7f5275234460cf
-
SSDEEP
768:St5KLZ/vbDEj7R7D35uvTW6wVmuHXJHdzTC/Wc8HEzHvcO:St5SZbDEj7R335yq6wVBpGpRTvcO
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2