Resubmissions

15-10-2022 22:26

221015-2ckbtagec3 8

15-10-2022 22:06

221015-1z52csgcgk 7

General

  • Target

    9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7

  • Size

    162KB

  • Sample

    221015-1z52csgcgk

  • MD5

    b08793eadfa6dd535f68e4f67c43e5c0

  • SHA1

    f952c86957f37022ce8ba1cab0c02fb262b74f76

  • SHA256

    9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7

  • SHA512

    62ad843c1c98dd270bddba6ff73022e2eae00ff5fcebb93b51e1b63da21fc1ae3124e11c063c655e8c3a13dda070bc25c9db20efbda556a397a294f49a9b3f63

  • SSDEEP

    3072:fnhp3kRaJdl8kLz7AuICdiRgrJpBPEg/GXib7VkR4OatVj:f3audlbcdRKJpBPEg/GXib6i

Score
7/10

Malware Config

Targets

    • Target

      9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7

    • Size

      162KB

    • MD5

      b08793eadfa6dd535f68e4f67c43e5c0

    • SHA1

      f952c86957f37022ce8ba1cab0c02fb262b74f76

    • SHA256

      9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7

    • SHA512

      62ad843c1c98dd270bddba6ff73022e2eae00ff5fcebb93b51e1b63da21fc1ae3124e11c063c655e8c3a13dda070bc25c9db20efbda556a397a294f49a9b3f63

    • SSDEEP

      3072:fnhp3kRaJdl8kLz7AuICdiRgrJpBPEg/GXib7VkR4OatVj:f3audlbcdRKJpBPEg/GXib6i

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation

                        Tasks