General

  • Target

    84b8220f15d946ffc8f534fbbe88d52e9f38a983469ebfd1dc677b0637eb8385

  • Size

    250KB

  • Sample

    221205-mbg3qsdh91

  • MD5

    5a9bec35a02014351821721db1c1d6a6

  • SHA1

    9516cc7c3ca8ebd4a5933d6766eb798987374604

  • SHA256

    84b8220f15d946ffc8f534fbbe88d52e9f38a983469ebfd1dc677b0637eb8385

  • SHA512

    d15072932274d20434305b3b30c4e317f3dc99dc40a51f73c9c0490f1b4b0992f210e1c87b866ee142c96892c42bafef5f17a1978eb82f645b0e9bdf3c4722ca

  • SSDEEP

    6144:hrafL38i7BQKtxmvgs3alEUUai/NlV8stHI8s7mGgVsZNoz06FHb/OvX3GQ+GSAw:hruMSQKtxmvZ30EUUaiVlV8s906FHb/X

Score
10/10

Malware Config

Targets

    • Target

      84b8220f15d946ffc8f534fbbe88d52e9f38a983469ebfd1dc677b0637eb8385

    • Size

      250KB

    • MD5

      5a9bec35a02014351821721db1c1d6a6

    • SHA1

      9516cc7c3ca8ebd4a5933d6766eb798987374604

    • SHA256

      84b8220f15d946ffc8f534fbbe88d52e9f38a983469ebfd1dc677b0637eb8385

    • SHA512

      d15072932274d20434305b3b30c4e317f3dc99dc40a51f73c9c0490f1b4b0992f210e1c87b866ee142c96892c42bafef5f17a1978eb82f645b0e9bdf3c4722ca

    • SSDEEP

      6144:hrafL38i7BQKtxmvgs3alEUUai/NlV8stHI8s7mGgVsZNoz06FHb/OvX3GQ+GSAw:hruMSQKtxmvZ30EUUaiVlV8s906FHb/X

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks