Overview

overview

8

Static

static

MODSKIN_12.17.zip

windows10-2004-x64

8

LOLPRO 12.17.exe

windows10-2004-x64

1

README.txt

windows10-2004-x64

1

data.zip

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MODSKIN_12.17.zip

  • Size

    2.3MB

  • Sample

    220910-yb36raaef7

  • MD5

    b5f2d5444f2a78f6492da9c2c95f9763

  • SHA1

    59dd9f1df8f45716d6246d986c3a8475944cccb3

  • SHA256

    a16dd8417fc959638c9157f8a0210cea3182b40ec1bac20b0ec78d712111d49f

  • SHA512

    6ceb8c578f1455ec63c6a53a65f26bbf20cf24e68ed7e4361fcd0b49f4df9d59991ada7675c431c2102f5a6ee50bf95d31ba8d32676dff727d18fdb25a1d1ebb

  • SSDEEP

    49152:d6STW6vM3RQD8V2v1IYZaakRfOfCP0Sf0lNiOIFiwd1K79JfcNgxX:QQk3RQD8vol40SrKRJfog

Score
8/10

Malware Config

Targets

    • Target

      MODSKIN_12.17.zip

    • Size

      2.3MB

    • MD5

      b5f2d5444f2a78f6492da9c2c95f9763

    • SHA1

      59dd9f1df8f45716d6246d986c3a8475944cccb3

    • SHA256

      a16dd8417fc959638c9157f8a0210cea3182b40ec1bac20b0ec78d712111d49f

    • SHA512

      6ceb8c578f1455ec63c6a53a65f26bbf20cf24e68ed7e4361fcd0b49f4df9d59991ada7675c431c2102f5a6ee50bf95d31ba8d32676dff727d18fdb25a1d1ebb

    • SSDEEP

      49152:d6STW6vM3RQD8V2v1IYZaakRfOfCP0Sf0lNiOIFiwd1K79JfcNgxX:QQk3RQD8vol40SrKRJfog

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

    • Target

      LOLPRO 12.17.exe

    • Size

      449KB

    • MD5

      420dc8123043a54629f25adfb1cff776

    • SHA1

      fe54a1692343895742c6f043508d1c1e3913897b

    • SHA256

      3c08ff244314007374e4f36f88f876b8ef650c6e039d1df6a2c39948f742578a

    • SHA512

      f08267ba0a2fc9ad8e3bd74ace74d0415097c1a14a433190fe6ac9edb11dc4ae59ff10eb4083d6b3087245c25fad4c85c28220b5f7a962a4e466518110f11c42

    • SSDEEP

      12288:rBBbTe4jix+DsUp6BOaX8nfM3qEpg81EPC:rBNBe+Q5X8nZMg8n

    Score
    1/10
    behavioral2

    • Target

      README.txt

    • Size

      116B

    • MD5

      efee2b47ffee11184be82fbaf1ee4af2

    • SHA1

      76d0acbee33912f01b4dd8056485cfb49cac1574

    • SHA256

      7814765b6234fdc9bb8c56dc24dcac13ecaf004dd67db4166a07b1f73052477c

    • SHA512

      69977e738a90e15803115d30373507e8995f8bf4a92c6ed3262493e4cee147cfe3b183e081ad0d1d3d5ae7b433c8ccf2d931181a51762a02aa9dd54b55be7c06

    Score
    1/10
    behavioral3

    • Target

      data.lol

    • Size

      2.1MB

    • MD5

      32e0e412ac332c015fe3c1a1e6005461

    • SHA1

      aef2f03e4f06e60d3f52a7f9f0df90b0c3c095ba

    • SHA256

      c78d71f09aee7a82f44146d70bbbb9abd2de6e4c9814cb846cacdb608d91fd07

    • SHA512

      c7ceb149735d23c6add9ee71c4c812c780b59b7f62141e531db809757a956b600f474861949c99293e125311efdb7d9e5ce6bb0643064d98e06b4b36b0d3308c

    • SSDEEP

      49152:jFCfr2yhBdyXPrhSYkR2NfbTkO6zeoFfsN2U8ZS2:jJy1y/roYXbTzoFfY2U8ZS2

    Score
    1/10
    behavioral4

MITRE ATT&CK Enterprise v6

Tasks