General
-
Target
12071c161bcef3d371fb232edaaa0f88f5cf89bb07e6bd466e2bc903bd52bf1aN.exe
-
Size
296KB
-
Sample
241130-fqht9aykdl
-
MD5
01eef24d9bdcd750d756c5e8a08b2900
-
SHA1
3bd5d15aa29289327e2dbfb7de902373094de9d2
-
SHA256
12071c161bcef3d371fb232edaaa0f88f5cf89bb07e6bd466e2bc903bd52bf1a
-
SHA512
fcbc4a8d87b622fb8e8b0981e7d44023ca98e2514b99a6e7275e62d140e0e4855928f06eb92bb76274bfb132c160180d85b7b9ac204737d6ce904b8cabc0016d
-
SSDEEP
6144:72iFRsJcCf2lfKgO32mO1IdifegrSQOJMmSnxtAPUWJj9/P/oEAlu9UY6LxP:7hUTfqmjZHJFnPnp6l2U1P
Malware Config
Targets
-
-
Target
12071c161bcef3d371fb232edaaa0f88f5cf89bb07e6bd466e2bc903bd52bf1aN.exe
-
Size
296KB
-
MD5
01eef24d9bdcd750d756c5e8a08b2900
-
SHA1
3bd5d15aa29289327e2dbfb7de902373094de9d2
-
SHA256
12071c161bcef3d371fb232edaaa0f88f5cf89bb07e6bd466e2bc903bd52bf1a
-
SHA512
fcbc4a8d87b622fb8e8b0981e7d44023ca98e2514b99a6e7275e62d140e0e4855928f06eb92bb76274bfb132c160180d85b7b9ac204737d6ce904b8cabc0016d
-
SSDEEP
6144:72iFRsJcCf2lfKgO32mO1IdifegrSQOJMmSnxtAPUWJj9/P/oEAlu9UY6LxP:7hUTfqmjZHJFnPnp6l2U1P
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2