General

  • Target

    document-35068.iso

  • Size

    706KB

  • Sample

    221101-mss7bsbhgl

  • MD5

    70ebbb2e50b4f69cab93b9fc4ecdff4f

  • SHA1

    366c9cddbb36a798762f869ca7e0c187086827d7

  • SHA256

    ea25090f26e76a4d91a8d6fa325fe5068c341e7c002598ed7490caee8846d2ca

  • SHA512

    129a9c1d27e6cf7638d453a624e7c4ea2c6c83271d08c70e58180ad44914d7f3e5f2203d148c64b4c8c6614018e278e95f76a5ba95b1b090888e9af55d55ee79

  • SSDEEP

    6144:0UybNmbA4k7pIp6vLMoimii4b2NdsPdG+DOirCOaC:obcbA4k7pvLCmii4b20g+buOa

Score
8/10

Malware Config

Targets

    • Target

      demurest.cmd

    • Size

      710B

    • MD5

      586fe6d361ef5208fad28c5ff8a4579b

    • SHA1

      bf4177381235393279e7cdfd45a3fa497b7b8a96

    • SHA256

      364d346da8e398a89d3542600cbc72984b857df3d20a6dc37879f14e5e173522

    • SHA512

      bb702af1aeba2b2ccf317404f601a61457fee2348a07c55324afee32406a0ab436b49a54eee2500f3620382f066d6912724ba7cb3cf4b4b1ee4997a3a922b8ea

    Score
    8/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      documents-9771.lnk

    • Size

      2KB

    • MD5

      51e416c3d3be568864994449cd39caa1

    • SHA1

      ee1c5e9f1257fbda3b174d534d06dddf435d3327

    • SHA256

      57842fe8723ed6ebdf7fc17fc341909ad05a7a4feec8bdb5e062882da29fa1a8

    • SHA512

      020cc070c30e5cf192145056b24198846b9cc856ba001924eb95d439d521cffc5c133f7c8506724a2e53083fb5cd8343945370094ed1e1923ca3e9622526bcd8

    Score
    8/10
    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks