General

  • Target

    5559e787c4dcf45abf055154bb946581d39a6639388483b5ec87428045f4ba26

  • Size

    4.0MB

  • Sample

    221123-njes1sha37

  • MD5

    c17196c7709c6b44d690e4423f849304

  • SHA1

    ba2ff691c9380cf9eff442a9b3b690f9cc4de7c7

  • SHA256

    5559e787c4dcf45abf055154bb946581d39a6639388483b5ec87428045f4ba26

  • SHA512

    5356fbd69c96202ce8dc20c36a2fcfffaea3acedd6a974555d661545eb4d6b6ade3ccb1bfa7ec0997bbbc40b9e02c66ffc951d21bfce79f74fba289890b38db0

  • SSDEEP

    98304:83S/a/VqVI0hME0Q4uDBB/U6Lx4BO8mCiSdKer:+S/QwVIu4uDHh4BO1CBdhr

Malware Config

Targets

    • Target

      5559e787c4dcf45abf055154bb946581d39a6639388483b5ec87428045f4ba26

    • Size

      4.0MB

    • MD5

      c17196c7709c6b44d690e4423f849304

    • SHA1

      ba2ff691c9380cf9eff442a9b3b690f9cc4de7c7

    • SHA256

      5559e787c4dcf45abf055154bb946581d39a6639388483b5ec87428045f4ba26

    • SHA512

      5356fbd69c96202ce8dc20c36a2fcfffaea3acedd6a974555d661545eb4d6b6ade3ccb1bfa7ec0997bbbc40b9e02c66ffc951d21bfce79f74fba289890b38db0

    • SSDEEP

      98304:83S/a/VqVI0hME0Q4uDBB/U6Lx4BO8mCiSdKer:+S/QwVIu4uDHh4BO1CBdhr

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks