General

  • Target

    225a1ea945e2ab2d29d32b26ca5894f51b3368c885b3d738698d86477c3291c7

  • Size

    9.0MB

  • Sample

    220128-1x2k6aefgn

  • MD5

    ec06613aa60c6bba18505db2926f6a94

  • SHA1

    a5a00276cbb12afa365db83a27b8e90bc12a083a

  • SHA256

    225a1ea945e2ab2d29d32b26ca5894f51b3368c885b3d738698d86477c3291c7

  • SHA512

    7f085e1fef48ab444763226f8f853a899a9c6eea2010638bccd5e2d04ebdbd5fc25b0b1f9f8f957bd24e48c66435d8b1e20d8a44f9457f57fffa7138a7fc908f

Score
10/10

Malware Config

Targets

    • Target

      225a1ea945e2ab2d29d32b26ca5894f51b3368c885b3d738698d86477c3291c7

    • Size

      9.0MB

    • MD5

      ec06613aa60c6bba18505db2926f6a94

    • SHA1

      a5a00276cbb12afa365db83a27b8e90bc12a083a

    • SHA256

      225a1ea945e2ab2d29d32b26ca5894f51b3368c885b3d738698d86477c3291c7

    • SHA512

      7f085e1fef48ab444763226f8f853a899a9c6eea2010638bccd5e2d04ebdbd5fc25b0b1f9f8f957bd24e48c66435d8b1e20d8a44f9457f57fffa7138a7fc908f

    Score
    10/10
    • RMS

      Remote Manipulator System (RMS) is a remote access tool developed by Russian organization TektonIT.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks