General

  • Target

    56ecc45cd6746210c144124536ab5a53a87fe6d190b5df0a5d226960f7e72b1a

  • Size

    235KB

  • Sample

    220503-za8waaefdk

  • MD5

    e29d968f5a55255fa495a6eb3ed2e45c

  • SHA1

    1c15fd523ad905c4f2d209b66a9e84293a76cbd4

  • SHA256

    56ecc45cd6746210c144124536ab5a53a87fe6d190b5df0a5d226960f7e72b1a

  • SHA512

    99aae96ac78fdd3ec666fa5da6693c9feb561e10c55a04f82ad176f4e689659f48497cc4ad5058f99243f45a7e4fd7822ad7a62bc26f7539fce214ef951883c0

Score
10/10

Malware Config

Targets

    • Target

      56ecc45cd6746210c144124536ab5a53a87fe6d190b5df0a5d226960f7e72b1a

    • Size

      235KB

    • MD5

      e29d968f5a55255fa495a6eb3ed2e45c

    • SHA1

      1c15fd523ad905c4f2d209b66a9e84293a76cbd4

    • SHA256

      56ecc45cd6746210c144124536ab5a53a87fe6d190b5df0a5d226960f7e72b1a

    • SHA512

      99aae96ac78fdd3ec666fa5da6693c9feb561e10c55a04f82ad176f4e689659f48497cc4ad5058f99243f45a7e4fd7822ad7a62bc26f7539fce214ef951883c0

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks