General

  • Target

    caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe

  • Size

    48KB

  • Sample

    241203-txsjxsymhm

  • MD5

    881221e84a9ab1fbafc03920fddb8bc7

  • SHA1

    d80ebf54f21bef3f0b8e9e5d9a4498e57c600345

  • SHA256

    caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0

  • SHA512

    5f50e9219a6a3fc467594fa24d2152765fa8e68bf0f0a672a2b13e028ff1a2cd86f1092b071ce82ddf23576abe5ebcfcdcaa8892fd24d4e7ae06d641f95dda90

  • SSDEEP

    768:qOeN0XXrYVbAVBQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKT:qO5YVUVSHTwKqWAxcpvcqu74+JT

Malware Config

Targets

    • Target

      caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe

    • Size

      48KB

    • MD5

      881221e84a9ab1fbafc03920fddb8bc7

    • SHA1

      d80ebf54f21bef3f0b8e9e5d9a4498e57c600345

    • SHA256

      caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0

    • SHA512

      5f50e9219a6a3fc467594fa24d2152765fa8e68bf0f0a672a2b13e028ff1a2cd86f1092b071ce82ddf23576abe5ebcfcdcaa8892fd24d4e7ae06d641f95dda90

    • SSDEEP

      768:qOeN0XXrYVbAVBQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKT:qO5YVUVSHTwKqWAxcpvcqu74+JT

    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks