General

  • Target

    mvs.exe

  • Size

    476KB

  • Sample

    220731-fy5nzsabf8

  • MD5

    faf25564825a05a4c01870cdc0535525

  • SHA1

    54d7f92637e31e4c1aed0a58b690d7d99886c380

  • SHA256

    82732e47492148243ee3fb338c93d43b9a9984f39e3409327600cffc5766af1b

  • SHA512

    b44be2421a074ea986336b0c179a6d416c845ae44b4ca67d31594506bd79a3fdfa2907d7bcf7b3c46f1d942e0b057fbd8bce3a02bceb5bf91e1e70c30a57f0db

Score
8/10

Malware Config

Targets

    • Target

      mvs.exe

    • Size

      476KB

    • MD5

      faf25564825a05a4c01870cdc0535525

    • SHA1

      54d7f92637e31e4c1aed0a58b690d7d99886c380

    • SHA256

      82732e47492148243ee3fb338c93d43b9a9984f39e3409327600cffc5766af1b

    • SHA512

      b44be2421a074ea986336b0c179a6d416c845ae44b4ca67d31594506bd79a3fdfa2907d7bcf7b3c46f1d942e0b057fbd8bce3a02bceb5bf91e1e70c30a57f0db

    Score
    8/10
    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks