General

  • Target

    7460accf81db3640d5f7e1e7b430431adfd687918983e78ecc12a0308f95ec47

  • Size

    29KB

  • Sample

    220201-gd3jkahecm

  • MD5

    d34a29506f9838ca335d18156e2fdebd

  • SHA1

    c1ffab611536705707c4d597bec4c25719200567

  • SHA256

    7460accf81db3640d5f7e1e7b430431adfd687918983e78ecc12a0308f95ec47

  • SHA512

    77413597ba2966dc8a3951dfbaeee85bb5407125716d950cf35f28ad8418ca157bf0035bf85691240bc3c0ca1ceeba80fd094eba2d360f5af11c94ddf5518724

Score
8/10

Malware Config

Targets

    • Target

      7460accf81db3640d5f7e1e7b430431adfd687918983e78ecc12a0308f95ec47

    • Size

      29KB

    • MD5

      d34a29506f9838ca335d18156e2fdebd

    • SHA1

      c1ffab611536705707c4d597bec4c25719200567

    • SHA256

      7460accf81db3640d5f7e1e7b430431adfd687918983e78ecc12a0308f95ec47

    • SHA512

      77413597ba2966dc8a3951dfbaeee85bb5407125716d950cf35f28ad8418ca157bf0035bf85691240bc3c0ca1ceeba80fd094eba2d360f5af11c94ddf5518724

    Score
    8/10
    • Blocklisted process makes network request

    • Sets service image path in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks