General

  • Target

    2c57c62617fb110afcb48e57565e444506e610b2379ed38df3db77031602b31d

  • Size

    3.7MB

  • Sample

    221124-aeh3zseb87

  • MD5

    1cc01b78658bdfa7a6c233c198d8a501

  • SHA1

    d5b87235fc007541de58ba1af99d9bc09c2bb605

  • SHA256

    2c57c62617fb110afcb48e57565e444506e610b2379ed38df3db77031602b31d

  • SHA512

    018c06b3863beb0de10451806ba356436b6644dc988240f635fc82df564d368d18b770989cd922b239ed62e9ec7cfa443f816dc0723884fb52714b9702351555

  • SSDEEP

    98304:pXbYse0bLs2VNrt5/nLQOBualSyhFKNGpM0WT+4JJp:RbYrYLfNrbfBdlSyhFVMplp

Malware Config

Targets

    • Target

      2c57c62617fb110afcb48e57565e444506e610b2379ed38df3db77031602b31d

    • Size

      3.7MB

    • MD5

      1cc01b78658bdfa7a6c233c198d8a501

    • SHA1

      d5b87235fc007541de58ba1af99d9bc09c2bb605

    • SHA256

      2c57c62617fb110afcb48e57565e444506e610b2379ed38df3db77031602b31d

    • SHA512

      018c06b3863beb0de10451806ba356436b6644dc988240f635fc82df564d368d18b770989cd922b239ed62e9ec7cfa443f816dc0723884fb52714b9702351555

    • SSDEEP

      98304:pXbYse0bLs2VNrt5/nLQOBualSyhFKNGpM0WT+4JJp:RbYrYLfNrbfBdlSyhFVMplp

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks