General
-
Target
6c9310bd68baa43a08c11d2294d393eda8f86e7f959a97ea9cf192c7995df605
-
Size
277KB
-
Sample
230319-cnajbaee43
-
MD5
75d7762b43c0653cabe134adbdac9108
-
SHA1
86fb5630ec470bc8552c4eabe08122165a53b0d3
-
SHA256
6c9310bd68baa43a08c11d2294d393eda8f86e7f959a97ea9cf192c7995df605
-
SHA512
44c52fe10f83eb9fd621158833bfb84dc607a58933e51850569766507affb2a1cbe2b9816eb52732298e336b40a9c2e968afdc8c9559ca1d96759bd82b4ab935
-
SSDEEP
6144:LXzKdNY49u8rV17tiSEhI1pRDl8yu/01nete:Ua4Am/80p2/01p
Malware Config
Targets
-
-
Target
6c9310bd68baa43a08c11d2294d393eda8f86e7f959a97ea9cf192c7995df605
-
Size
277KB
-
MD5
75d7762b43c0653cabe134adbdac9108
-
SHA1
86fb5630ec470bc8552c4eabe08122165a53b0d3
-
SHA256
6c9310bd68baa43a08c11d2294d393eda8f86e7f959a97ea9cf192c7995df605
-
SHA512
44c52fe10f83eb9fd621158833bfb84dc607a58933e51850569766507affb2a1cbe2b9816eb52732298e336b40a9c2e968afdc8c9559ca1d96759bd82b4ab935
-
SSDEEP
6144:LXzKdNY49u8rV17tiSEhI1pRDl8yu/01nete:Ua4Am/80p2/01p
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Matrix
Collection
Command and Control
Credential Access
Defense Evasion
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation