General

  • Target

    7b24f3dad3d4e9c0474ff34a98160ae52b3c9134757b834bebaeca6efa013493

  • Size

    2.5MB

  • Sample

    220128-yv5hxscgd7

  • MD5

    133852043c5bc42337579df1377dc425

  • SHA1

    ae49521602846df51c8c5a9d08a4d3de8c207aee

  • SHA256

    7b24f3dad3d4e9c0474ff34a98160ae52b3c9134757b834bebaeca6efa013493

  • SHA512

    a5291691f625b369f5e75f24299dd2ac716f26ec5aa176d14bb765a1d732849565af60c652305b5b4c390694db2a8b61fb6a3d65665f6a4e9fab559a5a4ce327

Score
10/10

Malware Config

Targets

    • Target

      7b24f3dad3d4e9c0474ff34a98160ae52b3c9134757b834bebaeca6efa013493

    • Size

      2.5MB

    • MD5

      133852043c5bc42337579df1377dc425

    • SHA1

      ae49521602846df51c8c5a9d08a4d3de8c207aee

    • SHA256

      7b24f3dad3d4e9c0474ff34a98160ae52b3c9134757b834bebaeca6efa013493

    • SHA512

      a5291691f625b369f5e75f24299dd2ac716f26ec5aa176d14bb765a1d732849565af60c652305b5b4c390694db2a8b61fb6a3d65665f6a4e9fab559a5a4ce327

    Score
    10/10
    • RMS

      Remote Manipulator System (RMS) is a remote access tool developed by Russian organization TektonIT.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks