General

  • Target

    def42f90767f46cd26702b62eca9c4329bfaca250c0bb8f67c5ba8981eb241cb

  • Size

    235KB

  • Sample

    220502-spz4csadfj

  • MD5

    1aa1beb898ce679b40473d626c6e3efc

  • SHA1

    1acfb79818f02f5992b997c662cfe680ddd98c84

  • SHA256

    def42f90767f46cd26702b62eca9c4329bfaca250c0bb8f67c5ba8981eb241cb

  • SHA512

    8dbdee7683a76c46c5a36418ecc3cd05ab414b62d5fbe6fe4f4f557d2510fb8b2b10fbaf67fe33fbe93f0d7d6ab0648c01732af51b7af61e8a90889af4c73f24

Score
10/10

Malware Config

Targets

    • Target

      def42f90767f46cd26702b62eca9c4329bfaca250c0bb8f67c5ba8981eb241cb

    • Size

      235KB

    • MD5

      1aa1beb898ce679b40473d626c6e3efc

    • SHA1

      1acfb79818f02f5992b997c662cfe680ddd98c84

    • SHA256

      def42f90767f46cd26702b62eca9c4329bfaca250c0bb8f67c5ba8981eb241cb

    • SHA512

      8dbdee7683a76c46c5a36418ecc3cd05ab414b62d5fbe6fe4f4f557d2510fb8b2b10fbaf67fe33fbe93f0d7d6ab0648c01732af51b7af61e8a90889af4c73f24

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks