General

  • Target

    df9550ac270ddb91f1884d7947a98944c341e39ec97c83955542dec33e2f7cce

  • Size

    356KB

  • Sample

    221124-al9jhseg77

  • MD5

    066c57d543a77caee1c5387bfc44d2a0

  • SHA1

    8619b141b18d738a7c62eafb798ee1dd6d9a3eec

  • SHA256

    df9550ac270ddb91f1884d7947a98944c341e39ec97c83955542dec33e2f7cce

  • SHA512

    e6671170ba3b978fcc85bf7e3e873ab4ad7dea5e2392aeda9f078f762cd3ed4fa66c3bdaa66e5528999034a9580dad14feaf6c83e92c32ddbc23dc56de959483

  • SSDEEP

    3072:T3tIpK9xKA9w2p4QZisLaazNiIIkyyq1bE5j4oQBHzT3Z9/:T3epKxY+1isuazgfklvd+z

Score
10/10

Malware Config

Targets

    • Target

      df9550ac270ddb91f1884d7947a98944c341e39ec97c83955542dec33e2f7cce

    • Size

      356KB

    • MD5

      066c57d543a77caee1c5387bfc44d2a0

    • SHA1

      8619b141b18d738a7c62eafb798ee1dd6d9a3eec

    • SHA256

      df9550ac270ddb91f1884d7947a98944c341e39ec97c83955542dec33e2f7cce

    • SHA512

      e6671170ba3b978fcc85bf7e3e873ab4ad7dea5e2392aeda9f078f762cd3ed4fa66c3bdaa66e5528999034a9580dad14feaf6c83e92c32ddbc23dc56de959483

    • SSDEEP

      3072:T3tIpK9xKA9w2p4QZisLaazNiIIkyyq1bE5j4oQBHzT3Z9/:T3epKxY+1isuazgfklvd+z

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks