General

  • Target

    c7d391f47b1cbe3bca6952fbb9154593e853c077d0f819230c94f8f45c656d7c

  • Size

    442KB

  • Sample

    220328-x48fhadhh6

  • MD5

    6e43d86ed4a2a8c3d65bdcf11da2592a

  • SHA1

    df347fbed94ce2f5dd7e4a6f868c85ef7658e715

  • SHA256

    c7d391f47b1cbe3bca6952fbb9154593e853c077d0f819230c94f8f45c656d7c

  • SHA512

    8d7323423f58e621fac18e9907a3457ee60410aa5bf2c63b79933438b02a65e50411b9c601563e5d729fd5536a0cb60037d94179f568d3f9c5168cf1f0c0b3b6

Score
10/10

Malware Config

Targets

    • Target

      c7d391f47b1cbe3bca6952fbb9154593e853c077d0f819230c94f8f45c656d7c

    • Size

      442KB

    • MD5

      6e43d86ed4a2a8c3d65bdcf11da2592a

    • SHA1

      df347fbed94ce2f5dd7e4a6f868c85ef7658e715

    • SHA256

      c7d391f47b1cbe3bca6952fbb9154593e853c077d0f819230c94f8f45c656d7c

    • SHA512

      8d7323423f58e621fac18e9907a3457ee60410aa5bf2c63b79933438b02a65e50411b9c601563e5d729fd5536a0cb60037d94179f568d3f9c5168cf1f0c0b3b6

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks