General

  • Target

    b19d49901abd80afa963c45e08cc6f34cb28c715fd9082256474c93d2bff4361

  • Size

    128KB

  • Sample

    221123-vmrejshd86

  • MD5

    5ff1dfa3e99499031ce8b416633c8cc0

  • SHA1

    c5788fa88c87094e2eb2dbc58308a35da89967e5

  • SHA256

    b19d49901abd80afa963c45e08cc6f34cb28c715fd9082256474c93d2bff4361

  • SHA512

    4bf288184df11390f5b06ec922c3ecf2b23f17fd8854a720c87d1cb15eebb6edfbcc729b3bdcc678b8dbb4e199cd75a6b9a0219b7a60a2b50493e3f0b9f515a2

  • SSDEEP

    1536:idusiAhgIuFQFvHwd6PXOYb7gXWgWKsEHTINeG0h/E:Susiqg/FQByYb7gvsEzM

Score
10/10

Malware Config

Targets

    • Target

      b19d49901abd80afa963c45e08cc6f34cb28c715fd9082256474c93d2bff4361

    • Size

      128KB

    • MD5

      5ff1dfa3e99499031ce8b416633c8cc0

    • SHA1

      c5788fa88c87094e2eb2dbc58308a35da89967e5

    • SHA256

      b19d49901abd80afa963c45e08cc6f34cb28c715fd9082256474c93d2bff4361

    • SHA512

      4bf288184df11390f5b06ec922c3ecf2b23f17fd8854a720c87d1cb15eebb6edfbcc729b3bdcc678b8dbb4e199cd75a6b9a0219b7a60a2b50493e3f0b9f515a2

    • SSDEEP

      1536:idusiAhgIuFQFvHwd6PXOYb7gXWgWKsEHTINeG0h/E:Susiqg/FQByYb7gvsEzM

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks