General

  • Target

    13e3f42f2c23412113e77f72f639f60d31f617dc03d0926658368ffeb4592835

  • Size

    244KB

  • Sample

    220503-za9gtaefdl

  • MD5

    8b26f3e54420b885df99c8b3b5cb06ba

  • SHA1

    042abf91d76c23c97e92f2fd146f8181d6593199

  • SHA256

    13e3f42f2c23412113e77f72f639f60d31f617dc03d0926658368ffeb4592835

  • SHA512

    4e2065746641fa8a1f7c8ae7572a3a431862467df9278d1170439a08ce5882d9f3e765238bbe84bbc03923667f8df57ab6ffec7b2c61c8f17d199adfeccf714e

Score
10/10

Malware Config

Targets

    • Target

      13e3f42f2c23412113e77f72f639f60d31f617dc03d0926658368ffeb4592835

    • Size

      244KB

    • MD5

      8b26f3e54420b885df99c8b3b5cb06ba

    • SHA1

      042abf91d76c23c97e92f2fd146f8181d6593199

    • SHA256

      13e3f42f2c23412113e77f72f639f60d31f617dc03d0926658368ffeb4592835

    • SHA512

      4e2065746641fa8a1f7c8ae7572a3a431862467df9278d1170439a08ce5882d9f3e765238bbe84bbc03923667f8df57ab6ffec7b2c61c8f17d199adfeccf714e

    Score
    10/10
    • OnlyLogger

      A tiny loader that uses IPLogger to get its payload.

    • OnlyLogger Payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v6

Tasks