General
-
Target
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe
-
Size
48KB
-
Sample
241203-txsjxsymhm
-
MD5
881221e84a9ab1fbafc03920fddb8bc7
-
SHA1
d80ebf54f21bef3f0b8e9e5d9a4498e57c600345
-
SHA256
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0
-
SHA512
5f50e9219a6a3fc467594fa24d2152765fa8e68bf0f0a672a2b13e028ff1a2cd86f1092b071ce82ddf23576abe5ebcfcdcaa8892fd24d4e7ae06d641f95dda90
-
SSDEEP
768:qOeN0XXrYVbAVBQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKT:qO5YVUVSHTwKqWAxcpvcqu74+JT
Static task
static1
Behavioral task
behavioral1
Sample
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0.exe
-
Size
48KB
-
MD5
881221e84a9ab1fbafc03920fddb8bc7
-
SHA1
d80ebf54f21bef3f0b8e9e5d9a4498e57c600345
-
SHA256
caa2851e6e4ca0f823b013aadc6582ca39ba26c893942b4683849febfe39e6e0
-
SHA512
5f50e9219a6a3fc467594fa24d2152765fa8e68bf0f0a672a2b13e028ff1a2cd86f1092b071ce82ddf23576abe5ebcfcdcaa8892fd24d4e7ae06d641f95dda90
-
SSDEEP
768:qOeN0XXrYVbAVBQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MKT:qO5YVUVSHTwKqWAxcpvcqu74+JT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2