General

  • Target

    d3bc247d2da65f98490b7ce030a73d3ffbbc928b829759eff0be51ea8f96b0ba

  • Size

    216KB

  • Sample

    221123-s8jkqadc76

  • MD5

    66403f9cbaa86bcf3ed3d9542efcd20c

  • SHA1

    56efb7e03fc2d85940ae5d0d76c39d53e0f73ab2

  • SHA256

    d3bc247d2da65f98490b7ce030a73d3ffbbc928b829759eff0be51ea8f96b0ba

  • SHA512

    882d2f790aee8c7eaaaf4839d7b71bb924e4beb9d01c68134b76aab39f394446365b7100682700d70e46fdc188a3df3e64fbff2bb4852780ba8437bc71ae3451

  • SSDEEP

    3072:xbZmtWciPCCENhg7jkfIGc7Ikeap0hhIJxzZ5URAeV4jsgyE+MBJkQ6:xbZm2OTKwQG6XbygxzARFqXkuY

Score
8/10

Malware Config

Targets

    • Target

      d3bc247d2da65f98490b7ce030a73d3ffbbc928b829759eff0be51ea8f96b0ba

    • Size

      216KB

    • MD5

      66403f9cbaa86bcf3ed3d9542efcd20c

    • SHA1

      56efb7e03fc2d85940ae5d0d76c39d53e0f73ab2

    • SHA256

      d3bc247d2da65f98490b7ce030a73d3ffbbc928b829759eff0be51ea8f96b0ba

    • SHA512

      882d2f790aee8c7eaaaf4839d7b71bb924e4beb9d01c68134b76aab39f394446365b7100682700d70e46fdc188a3df3e64fbff2bb4852780ba8437bc71ae3451

    • SSDEEP

      3072:xbZmtWciPCCENhg7jkfIGc7Ikeap0hhIJxzZ5URAeV4jsgyE+MBJkQ6:xbZm2OTKwQG6XbygxzARFqXkuY

    Score
    8/10
    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks for any installed AV software in registry

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks