General

  • Target

    0b628d5764034af71e7929e0f18628b74e8f075f9a7dcc87331ee3d44e419c18

  • Size

    2.6MB

  • Sample

    220128-2evkkafeg5

  • MD5

    f086776a5782d7f6044662cad34054bf

  • SHA1

    472c1cbbc931baefbd360bef3193edebeaee9f01

  • SHA256

    0b628d5764034af71e7929e0f18628b74e8f075f9a7dcc87331ee3d44e419c18

  • SHA512

    06073178a4f7ddd7850c08dae65745f8dfca3bb645d6792bf2473cedc87032366fb28c004cabaeab8fba6b91316afd8510feaff1270885ee78fe4b7e5c77bbf5

Score
10/10

Malware Config

Targets

    • Target

      0b628d5764034af71e7929e0f18628b74e8f075f9a7dcc87331ee3d44e419c18

    • Size

      2.6MB

    • MD5

      f086776a5782d7f6044662cad34054bf

    • SHA1

      472c1cbbc931baefbd360bef3193edebeaee9f01

    • SHA256

      0b628d5764034af71e7929e0f18628b74e8f075f9a7dcc87331ee3d44e419c18

    • SHA512

      06073178a4f7ddd7850c08dae65745f8dfca3bb645d6792bf2473cedc87032366fb28c004cabaeab8fba6b91316afd8510feaff1270885ee78fe4b7e5c77bbf5

    Score
    10/10
    • RMS

      Remote Manipulator System (RMS) is a remote access tool developed by Russian organization TektonIT.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks