General

  • Target

    980b574cdf4c4f7249d7c1e065246a48b56727368b20cf5a03aa284d236b5bbf

  • Size

    1MB

  • Sample

    221124-xydnyade53

  • MD5

    369c9c77c1643975a9c093c3f776c2ac

  • SHA1

    8a079e78eab762336d2250e04b628711da89a464

  • SHA256

    980b574cdf4c4f7249d7c1e065246a48b56727368b20cf5a03aa284d236b5bbf

  • SHA512

    593ee7d4f6f4e02a808108f37a9daed770d410e080ec3097c40b8de30eb30c30d16a495cae3fcc7801e3b981d01fe6213a5143665a70f34bf45e7bf83b2b2972

Score
7/10

Malware Config

Targets

    • Target

      980b574cdf4c4f7249d7c1e065246a48b56727368b20cf5a03aa284d236b5bbf

    • Size

      1MB

    • MD5

      369c9c77c1643975a9c093c3f776c2ac

    • SHA1

      8a079e78eab762336d2250e04b628711da89a464

    • SHA256

      980b574cdf4c4f7249d7c1e065246a48b56727368b20cf5a03aa284d236b5bbf

    • SHA512

      593ee7d4f6f4e02a808108f37a9daed770d410e080ec3097c40b8de30eb30c30d16a495cae3fcc7801e3b981d01fe6213a5143665a70f34bf45e7bf83b2b2972

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

          Execution

            Exfiltration

              Impact

                Initial Access

                  Lateral Movement

                    Persistence

                      Privilege Escalation