General

  • Target

    3a03aa8a23e278ecd9e48b0c931429a547e19649524946648d2db5c510c62c77

  • Size

    291KB

  • Sample

    220330-llz6mafehp

  • MD5

    24fd51f54dcce510ac5e00f2d7b0a9c6

  • SHA1

    014094ff7a46a0f7763011eb4bbd78d511cd3be0

  • SHA256

    3a03aa8a23e278ecd9e48b0c931429a547e19649524946648d2db5c510c62c77

  • SHA512

    06c3d1e022a609a1cba1ac54e9749bfda428570352dd40aa0b9e065a2413bd0ed9b445443a4d187ce85412f1b531ef971571cf24465f0d10aa2222eaddb97f23

Score
10/10

Malware Config

Targets

    • Target

      3a03aa8a23e278ecd9e48b0c931429a547e19649524946648d2db5c510c62c77

    • Size

      291KB

    • MD5

      24fd51f54dcce510ac5e00f2d7b0a9c6

    • SHA1

      014094ff7a46a0f7763011eb4bbd78d511cd3be0

    • SHA256

      3a03aa8a23e278ecd9e48b0c931429a547e19649524946648d2db5c510c62c77

    • SHA512

      06c3d1e022a609a1cba1ac54e9749bfda428570352dd40aa0b9e065a2413bd0ed9b445443a4d187ce85412f1b531ef971571cf24465f0d10aa2222eaddb97f23

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks