General

  • Target

    afb872ccfeb8d8b19637678bff58261235dc4b3ff5c5bdea855a57694a600bb9

  • Size

    250KB

  • Sample

    221030-ak793adggl

  • MD5

    5f404f4efedc061f5bb9bcfc1f397e90

  • SHA1

    92f4062a8654306df5c0eee90ef93ec41f5fea30

  • SHA256

    afb872ccfeb8d8b19637678bff58261235dc4b3ff5c5bdea855a57694a600bb9

  • SHA512

    7ef49786bc2530851f5d0052cf54d251792747416d66c8577b13c1b111a8acb9cb2021dd6bf446700ff14db2c58a3ad4e7f833ebdb0b33c8adadfec00a7a5a3b

  • SSDEEP

    3072:mXyqNsMoBuSXZVpl2mclbj4Uvx+8ysNOu+2eRcKksU61JkkX39RLrw4ySKUbax2b:ZqN5sp4LnbmlrZ3brf

Score
10/10

Malware Config

Targets

    • Target

      afb872ccfeb8d8b19637678bff58261235dc4b3ff5c5bdea855a57694a600bb9

    • Size

      250KB

    • MD5

      5f404f4efedc061f5bb9bcfc1f397e90

    • SHA1

      92f4062a8654306df5c0eee90ef93ec41f5fea30

    • SHA256

      afb872ccfeb8d8b19637678bff58261235dc4b3ff5c5bdea855a57694a600bb9

    • SHA512

      7ef49786bc2530851f5d0052cf54d251792747416d66c8577b13c1b111a8acb9cb2021dd6bf446700ff14db2c58a3ad4e7f833ebdb0b33c8adadfec00a7a5a3b

    • SSDEEP

      3072:mXyqNsMoBuSXZVpl2mclbj4Uvx+8ysNOu+2eRcKksU61JkkX39RLrw4ySKUbax2b:ZqN5sp4LnbmlrZ3brf

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks