General
-
Target
66eeb0dd91a5264ace5c37d277c624528d2086576f9525191c565d532f338787N.exe
-
Size
204KB
-
Sample
241122-w17jcs1qcm
-
MD5
72d7ce61d2af7c34fb68db3f73feec80
-
SHA1
2b1d7c784b49b4a3622d736778371c267426d544
-
SHA256
66eeb0dd91a5264ace5c37d277c624528d2086576f9525191c565d532f338787
-
SHA512
684e93654d796aee086f8ce11924d4616fc68f72fdb3b1fa72ea5661c71038b12fe2966d1807d70e108f365805526cd677314b030305067d5a1276cbc0da7b08
-
SSDEEP
3072:9mQW8H0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWZe:Elw4QxL7B9W0c1RCzR/fSmlv
Malware Config
Targets
-
-
Target
66eeb0dd91a5264ace5c37d277c624528d2086576f9525191c565d532f338787N.exe
-
Size
204KB
-
MD5
72d7ce61d2af7c34fb68db3f73feec80
-
SHA1
2b1d7c784b49b4a3622d736778371c267426d544
-
SHA256
66eeb0dd91a5264ace5c37d277c624528d2086576f9525191c565d532f338787
-
SHA512
684e93654d796aee086f8ce11924d4616fc68f72fdb3b1fa72ea5661c71038b12fe2966d1807d70e108f365805526cd677314b030305067d5a1276cbc0da7b08
-
SSDEEP
3072:9mQW8H0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWZe:Elw4QxL7B9W0c1RCzR/fSmlv
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2