General

  • Target

    072b23420d45a89ddbc232a70f7cf08980a4539228fe6e092208523d42d51946

  • Size

    260KB

  • Sample

    221011-y7wrjschg8

  • MD5

    68783982570e9f4db68fb3b73604f2d4

  • SHA1

    33193f7080f148ed4554239057a67ba17e7e3fa0

  • SHA256

    072b23420d45a89ddbc232a70f7cf08980a4539228fe6e092208523d42d51946

  • SHA512

    7add90ad7438c9ac68f0533b2336e5ccc499fc7b69f8a6ed96f901b9e506db7a01e180bb5cc8b17bdfa51307703c18d998a4d1f27f1809cb569cf3a4e5c1e474

  • SSDEEP

    6144:cCBZxrVG3zzyXcM9ZoxtoFIZ93Cv8A/DPPiZi6u:NNIzzyXcM9ZoxtoFIZ93Cv8A/DXau

Score
10/10

Malware Config

Targets

    • Target

      072b23420d45a89ddbc232a70f7cf08980a4539228fe6e092208523d42d51946

    • Size

      260KB

    • MD5

      68783982570e9f4db68fb3b73604f2d4

    • SHA1

      33193f7080f148ed4554239057a67ba17e7e3fa0

    • SHA256

      072b23420d45a89ddbc232a70f7cf08980a4539228fe6e092208523d42d51946

    • SHA512

      7add90ad7438c9ac68f0533b2336e5ccc499fc7b69f8a6ed96f901b9e506db7a01e180bb5cc8b17bdfa51307703c18d998a4d1f27f1809cb569cf3a4e5c1e474

    • SSDEEP

      6144:cCBZxrVG3zzyXcM9ZoxtoFIZ93Cv8A/DPPiZi6u:NNIzzyXcM9ZoxtoFIZ93Cv8A/DXau

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks