Overview

overview

8

Static

static

1

Uffscv.hta

windows7-x64

3

Uffscv.hta

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    W.zip

  • Size

    115KB

  • Sample

    230421-qpkbssfg39

  • MD5

    1c4b0f1eebe061f2894b7423d316d829

  • SHA1

    fa1d7d16067d69e13d31d102f46a350b2361f3da

  • SHA256

    802d81674185613e93c065b0eb8d6b3f6e9897076e52c855b8709d91bdaa3da0

  • SHA512

    9186abb8d8c95f14b5e06b3ab125614d1a77d2acf5fe0a0aa1bb5585c35b7bd16b749042643e3a9bb11cfa089628b1b946c2587ebae26041d26cdde606975f8b

  • SSDEEP

    3072:6jXXyUBnkcdh7fbddwFS0E2FtxVwzY3BZtD:y2MDderE07V3PtD

Score
8/10

Malware Config

Targets

    • Target

      Uffscv.hta

    • Size

      300KB

    • MD5

      b01983b1cfd186bdead4b3cd329af828

    • SHA1

      2b63d1664244bced4b8d9c61d656104bde270dfc

    • SHA256

      416d3185feec3a22788c6ad0d76412a5603c0c725783e183366e8582199c7bee

    • SHA512

      8f426caf1db51e6aefa250776f1feb3d0f3e00ceeff762b87e0b440463b3510d752d809a5a655e37eb260996164e4699bf923c2cf4f1ec4226682df231768fb4

    • SSDEEP

      6144:3y3md4c3xh3GnQSwd9wMeEEdoocpTj86y3md4c3xh3Gj:3NZBsnQT9cONZBsj

    Score
    8/10

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks