General
-
Target
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6
-
Size
140KB
-
Sample
250127-zd2alsvpdl
-
MD5
1985fa78adcd48ff82737ea640d56bb0
-
SHA1
20dd4a4d9faca582a2d3b91d34ef2110f701b6a8
-
SHA256
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6
-
SHA512
1ae39b1dd5b15a016b48e46bfb24df6e26bc65e843d9657538f8a1e85e63b15bea02564197fd111175f7c959b7631d33ee43fd601550e442d6c5a829e22843d8
-
SSDEEP
1536:OtBhYbgPtIzc5iagpF/4B9Nup9uXQYbceZ86rLJeUyUBMXJ+CMrYZA:eYLc5ixpFQzjfbceZTxlLaksZA
Static task
static1
Behavioral task
behavioral1
Sample
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6
-
Size
140KB
-
MD5
1985fa78adcd48ff82737ea640d56bb0
-
SHA1
20dd4a4d9faca582a2d3b91d34ef2110f701b6a8
-
SHA256
25a1463cc61a0979f11f878261d55c7635feb6c39e62f4eca15f441facb0a2d6
-
SHA512
1ae39b1dd5b15a016b48e46bfb24df6e26bc65e843d9657538f8a1e85e63b15bea02564197fd111175f7c959b7631d33ee43fd601550e442d6c5a829e22843d8
-
SSDEEP
1536:OtBhYbgPtIzc5iagpF/4B9Nup9uXQYbceZ86rLJeUyUBMXJ+CMrYZA:eYLc5ixpFQzjfbceZTxlLaksZA
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2