General
-
Target
534a10a138ed2fc152e6f4d66c4f57f2efd9af55dfedb80660d23c057b5ee684.exe
-
Size
52KB
-
Sample
241203-tv1shsymbj
-
MD5
48492ee02582093619ae9b2f85527e91
-
SHA1
87bedbfd31292d389a1badebe23f5917421fbcf8
-
SHA256
534a10a138ed2fc152e6f4d66c4f57f2efd9af55dfedb80660d23c057b5ee684
-
SHA512
6399b211f0bc5f5a2945a4374a76f61cfff546f4dafe8f5cbc062728c48115c7ab5311b613e8d70552286bd3babfd13896043499d23d081d126d248d311f9361
-
SSDEEP
768:WbNj3dfAZchy5aVoDVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKx:4NacwXVWl4vUv4WvcsFFoHxIx
Malware Config
Targets
-
-
Target
534a10a138ed2fc152e6f4d66c4f57f2efd9af55dfedb80660d23c057b5ee684.exe
-
Size
52KB
-
MD5
48492ee02582093619ae9b2f85527e91
-
SHA1
87bedbfd31292d389a1badebe23f5917421fbcf8
-
SHA256
534a10a138ed2fc152e6f4d66c4f57f2efd9af55dfedb80660d23c057b5ee684
-
SHA512
6399b211f0bc5f5a2945a4374a76f61cfff546f4dafe8f5cbc062728c48115c7ab5311b613e8d70552286bd3babfd13896043499d23d081d126d248d311f9361
-
SSDEEP
768:WbNj3dfAZchy5aVoDVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKx:4NacwXVWl4vUv4WvcsFFoHxIx
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2