General

  • Target

    c8053148ed776c7a241e9746f872ff064c6677bf348f606e30a79e1eb602411b

  • Size

    406KB

  • Sample

    220501-3lsvzsbcck

  • MD5

    c8656051042f8afea9c8439bd6d4b4d5

  • SHA1

    a23c2018675b4f45d211fb97ba075acabf1baaa5

  • SHA256

    c8053148ed776c7a241e9746f872ff064c6677bf348f606e30a79e1eb602411b

  • SHA512

    4d390c0518dafcdd07fe807031c95d7bc32a3e743a8cabeb1f9e1d5c643abf165bbb7c91e0bb377a7fbb004a1c690457e9316046e75a9a4f4b4acda2be7527b9

Score
10/10

Malware Config

Targets

    • Target

      c8053148ed776c7a241e9746f872ff064c6677bf348f606e30a79e1eb602411b

    • Size

      406KB

    • MD5

      c8656051042f8afea9c8439bd6d4b4d5

    • SHA1

      a23c2018675b4f45d211fb97ba075acabf1baaa5

    • SHA256

      c8053148ed776c7a241e9746f872ff064c6677bf348f606e30a79e1eb602411b

    • SHA512

      4d390c0518dafcdd07fe807031c95d7bc32a3e743a8cabeb1f9e1d5c643abf165bbb7c91e0bb377a7fbb004a1c690457e9316046e75a9a4f4b4acda2be7527b9

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks