General

  • Target

    5cc14712d25a5849292588e49d6fabe0aa90d254919e2a99e12ddf43e676369e

  • Size

    205KB

  • Sample

    220329-zta4csfdbj

  • MD5

    93aaef3666de63f73b55fbbfb7b42a93

  • SHA1

    e4c9c002b4219ddb93c8be524894a7eb8fee6b87

  • SHA256

    5cc14712d25a5849292588e49d6fabe0aa90d254919e2a99e12ddf43e676369e

  • SHA512

    de88bc9a5a84d4537daaf221541bf60dc036df2e2f3cd935fedcae1732d6e5df041dcbc0167db67cce48f09e368c2af1093b7a548783d795546b798490045922

Score
10/10

Malware Config

Targets

    • Target

      5cc14712d25a5849292588e49d6fabe0aa90d254919e2a99e12ddf43e676369e

    • Size

      205KB

    • MD5

      93aaef3666de63f73b55fbbfb7b42a93

    • SHA1

      e4c9c002b4219ddb93c8be524894a7eb8fee6b87

    • SHA256

      5cc14712d25a5849292588e49d6fabe0aa90d254919e2a99e12ddf43e676369e

    • SHA512

      de88bc9a5a84d4537daaf221541bf60dc036df2e2f3cd935fedcae1732d6e5df041dcbc0167db67cce48f09e368c2af1093b7a548783d795546b798490045922

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks