General

  • Target

    63c9e167a5c92871f3840ae9c97762214df2c297594f30345a4e8faf9106b144

  • Size

    239KB

  • Sample

    220503-za5tmaefdj

  • MD5

    e432cc77be343793b3becdc2d494b78c

  • SHA1

    a424a26aebe7a8a1d20f72d76821afe7ea4ba94e

  • SHA256

    63c9e167a5c92871f3840ae9c97762214df2c297594f30345a4e8faf9106b144

  • SHA512

    3057defb1c7816656ba95a5bc47238d9a943023c43a5f448a15ad25dc79eca6c96f46c19f6dbd2f43d0fbb0041e58b899467ad8ca59f10e8be2680d59e6fd055

Score
10/10

Malware Config

Targets

    • Target

      63c9e167a5c92871f3840ae9c97762214df2c297594f30345a4e8faf9106b144

    • Size

      239KB

    • MD5

      e432cc77be343793b3becdc2d494b78c

    • SHA1

      a424a26aebe7a8a1d20f72d76821afe7ea4ba94e

    • SHA256

      63c9e167a5c92871f3840ae9c97762214df2c297594f30345a4e8faf9106b144

    • SHA512

      3057defb1c7816656ba95a5bc47238d9a943023c43a5f448a15ad25dc79eca6c96f46c19f6dbd2f43d0fbb0041e58b899467ad8ca59f10e8be2680d59e6fd055

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks