General

  • Target

    برقية 380.exe

  • Size

    636KB

  • Sample

    221124-n3hc9aca39

  • MD5

    027e013d26197ccd4c0a38c0b8704f75

  • SHA1

    3241787f7fff3d2580ca99ae4ccbdcd92ed58100

  • SHA256

    8c09a804f408f7f9edd021d078260a47cf513c3ce339c75ebf42be6e9af24946

  • SHA512

    02bf1e5b039cce13f1658a7ddffd5406020f5b4baae6dabd3bd91e5fe381b7d17b75cf5b348c6a5d073d4708ce080d3bb1433eb97c7a1ef2150e7e7ba81ffb02

  • SSDEEP

    3072:dBxjAWnzKEL/Y+gCfkWRCGg+5zRhNRwW0RYgEKy+IrPZziHzoY46CIuldIAJfqTE:dB6WeEj5gCfL/gGzRheubFuoh5jI

Score
8/10

Malware Config

Targets

    • Target

      برقية 380.exe

    • Size

      636KB

    • MD5

      027e013d26197ccd4c0a38c0b8704f75

    • SHA1

      3241787f7fff3d2580ca99ae4ccbdcd92ed58100

    • SHA256

      8c09a804f408f7f9edd021d078260a47cf513c3ce339c75ebf42be6e9af24946

    • SHA512

      02bf1e5b039cce13f1658a7ddffd5406020f5b4baae6dabd3bd91e5fe381b7d17b75cf5b348c6a5d073d4708ce080d3bb1433eb97c7a1ef2150e7e7ba81ffb02

    • SSDEEP

      3072:dBxjAWnzKEL/Y+gCfkWRCGg+5zRhNRwW0RYgEKy+IrPZziHzoY46CIuldIAJfqTE:dB6WeEj5gCfL/gGzRheubFuoh5jI

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks