General

  • Target

    26852377a0915054f4c4485d4d6e1d5b093ce192c5d6b0bd826f6cbe8f50afe8

  • Size

    370KB

  • Sample

    220501-3lzcrsbccr

  • MD5

    ede8160425040dc9cc226928b204fa79

  • SHA1

    b2ae8017c5c70390964d971695341899478772eb

  • SHA256

    26852377a0915054f4c4485d4d6e1d5b093ce192c5d6b0bd826f6cbe8f50afe8

  • SHA512

    6337469ed4274bf136796528438964d953cc26657e5b89d728304df897584a547237ee9882b31023d357f3adaa658e7b04b28f565c0db1237dd675e223e33e3b

Score
10/10

Malware Config

Targets

    • Target

      26852377a0915054f4c4485d4d6e1d5b093ce192c5d6b0bd826f6cbe8f50afe8

    • Size

      370KB

    • MD5

      ede8160425040dc9cc226928b204fa79

    • SHA1

      b2ae8017c5c70390964d971695341899478772eb

    • SHA256

      26852377a0915054f4c4485d4d6e1d5b093ce192c5d6b0bd826f6cbe8f50afe8

    • SHA512

      6337469ed4274bf136796528438964d953cc26657e5b89d728304df897584a547237ee9882b31023d357f3adaa658e7b04b28f565c0db1237dd675e223e33e3b

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks