General

  • Target

    2167bbfb8ef176f7a08a707d81bd39382b4c620725a61d0ec0fc4b18f575a56f

  • Size

    172KB

  • Sample

    221030-yl9fhshdep

  • MD5

    917f7b192b123ab926ec3cb3cda39410

  • SHA1

    f7c15817e4c5dbf9544ef367eb8cf8330f2296f1

  • SHA256

    2167bbfb8ef176f7a08a707d81bd39382b4c620725a61d0ec0fc4b18f575a56f

  • SHA512

    9ee593435a5ed3d0be44a690d938da41d2100df4b2071dccbdf43d6691f40c63c967975bebd66bb03223bf1933f1bacfeb1ac5ae96314b01cc987831b8ee86d4

  • SSDEEP

    3072:6crmzTIhO/1Inu6AmWmHSlDMehogxgbDT5qouyX7UgZgkaDqKEmvqsgAK:6UBOtIu6AmWmHSlDMehogxgbDTQouyX8

Score
10/10

Malware Config

Targets

    • Target

      2167bbfb8ef176f7a08a707d81bd39382b4c620725a61d0ec0fc4b18f575a56f

    • Size

      172KB

    • MD5

      917f7b192b123ab926ec3cb3cda39410

    • SHA1

      f7c15817e4c5dbf9544ef367eb8cf8330f2296f1

    • SHA256

      2167bbfb8ef176f7a08a707d81bd39382b4c620725a61d0ec0fc4b18f575a56f

    • SHA512

      9ee593435a5ed3d0be44a690d938da41d2100df4b2071dccbdf43d6691f40c63c967975bebd66bb03223bf1933f1bacfeb1ac5ae96314b01cc987831b8ee86d4

    • SSDEEP

      3072:6crmzTIhO/1Inu6AmWmHSlDMehogxgbDT5qouyX7UgZgkaDqKEmvqsgAK:6UBOtIu6AmWmHSlDMehogxgbDTQouyX8

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks