Resubmissions

24-11-2022 02:15

221124-cp371sba97 10

23-11-2022 10:03

221123-l3ntxsch89 10

General

  • Target

    8431388285.zip

  • Size

    897B

  • Sample

    221123-l3ntxsch89

  • MD5

    4de5d16feccc2aa65f49d582884ca841

  • SHA1

    58194753ffb1ddc20a2d2256eff1dbc1fc8f0b8e

  • SHA256

    eafce3d469cefe1a6c5fadd4e292f6a94704679657e3f22f0a6a35af9160e491

  • SHA512

    d18a89c21623bd7fe925a4da8bcabce4b700c6cad6b1001539033c48da4e84b11ea8eb3216e3113de5405b13bb45286f72bbc06d97d0b05221a52a7a520f8ef4

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

https://doc.gdocshare.one/SYsWCc9+dx+o/gL79ReA3h7/r6r1OIXpUPR0vbw20DQ=

Targets

    • Target

      8f05021071c4bfd4cfce3d02bd30bf16f1322170515d796e13f75eb25b09d533

    • Size

      1KB

    • MD5

      99066332471d626dce4b2fd8c0543aea

    • SHA1

      e273ed808f0ef67b71afcb7f77da80be56228a58

    • SHA256

      8f05021071c4bfd4cfce3d02bd30bf16f1322170515d796e13f75eb25b09d533

    • SHA512

      95cc97a541a69bb3283221d9db0ce8ec3a9c5830c85b5c99991899706dbbd519eada6023ef77b1b0969666d1f17b366ff33d37a36db9e0130f90d6a3b35ec25c

    Score
    10/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v6

Tasks