General

  • Target

    tmp

  • Size

    16KB

  • Sample

    230401-f744tahe8v

  • MD5

    c200ea136a598e37eb83c8c6031b3f29

  • SHA1

    51ff8101eea8d51a6178635ed26c19678a3d8aa3

  • SHA256

    3b04548e24bcb504a04734a24d47d7f880ca12c5575478d823d27020aea721f8

  • SHA512

    14cc2786c2cb7f7ab87dcb180be9e6962d833c9622aa8facf73b65fd2cf0ccd6ce8bde894cd9dcfef225f9290203fe429007f9e722a2602ecc5ee9bc6e869fc6

  • SSDEEP

    96:kEVg6r1wCCbBarsanJtRHJeZW+RElJ869X/Q+sjsTNTSEnrtDINyncI+vL/mg56D:XVZZrDRgAKErjOEnrtDINynT+vCgcNXh

Score
8/10

Malware Config

Targets

    • Target

      tmp

    • Size

      16KB

    • MD5

      c200ea136a598e37eb83c8c6031b3f29

    • SHA1

      51ff8101eea8d51a6178635ed26c19678a3d8aa3

    • SHA256

      3b04548e24bcb504a04734a24d47d7f880ca12c5575478d823d27020aea721f8

    • SHA512

      14cc2786c2cb7f7ab87dcb180be9e6962d833c9622aa8facf73b65fd2cf0ccd6ce8bde894cd9dcfef225f9290203fe429007f9e722a2602ecc5ee9bc6e869fc6

    • SSDEEP

      96:kEVg6r1wCCbBarsanJtRHJeZW+RElJ869X/Q+sjsTNTSEnrtDINyncI+vL/mg56D:XVZZrDRgAKErjOEnrtDINynT+vCgcNXh

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks