General

  • Target

    be33bd7f3956c2a5fc4ed13b7f6cb2df71b77fa67209b5e73c831efbf728caf0

  • Size

    405KB

  • Sample

    220501-3lt32sbccm

  • MD5

    fef08fe03292543a62f7f28103180eeb

  • SHA1

    3c7af0353f0f93a5b9dfcf6198c325ff4e27b2d0

  • SHA256

    be33bd7f3956c2a5fc4ed13b7f6cb2df71b77fa67209b5e73c831efbf728caf0

  • SHA512

    fb6506d15e635231c703a3dad86f35d162af4d9531091b1939acb3deb1ae13d7f9c2c9edd75f2c11a21ecbfaf713817a4f4412217d09f5e8620cf319640543d4

Score
10/10

Malware Config

Targets

    • Target

      be33bd7f3956c2a5fc4ed13b7f6cb2df71b77fa67209b5e73c831efbf728caf0

    • Size

      405KB

    • MD5

      fef08fe03292543a62f7f28103180eeb

    • SHA1

      3c7af0353f0f93a5b9dfcf6198c325ff4e27b2d0

    • SHA256

      be33bd7f3956c2a5fc4ed13b7f6cb2df71b77fa67209b5e73c831efbf728caf0

    • SHA512

      fb6506d15e635231c703a3dad86f35d162af4d9531091b1939acb3deb1ae13d7f9c2c9edd75f2c11a21ecbfaf713817a4f4412217d09f5e8620cf319640543d4

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks