General

  • Target

    8866d0e530cb613fde59c5476ea6c331.bin

  • Size

    25KB

  • Sample

    230923-cmq5nsbf4t

  • MD5

    cb01c61d205d3faf6b2e7948de51f606

  • SHA1

    00eb28736299e5c5236981755a8e456ab4f7fce5

  • SHA256

    0677b4886c2833d9922a4de0aa0abc3a1e5579d0808a60fdd8bb3a75e0e7aa07

  • SHA512

    6c1c7f7bc73332d0610babe3a9ee95f1bcee684aa834e8f73242af722efb9f9a4d6b33ca118bc4ff453d8793abaf6a4bd2315566392fa85f57cb384883343900

  • SSDEEP

    384:dBgV4zFDiW86uB8hH/mNGiImVhKQIFcxiSViImOc3oNPPqql13Ne0ns6nqqmi:dB44zFGW86UOe8iVpO0/xplqn6qLi

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source

Targets

    • Target

      98c59262ad396b4da5b0a3e82f819923f860e974f687c4fff9b852f25a56c50f.xll

    • Size

      50KB

    • MD5

      8866d0e530cb613fde59c5476ea6c331

    • SHA1

      e77beeb201303b739a9c4536514e48adc2118900

    • SHA256

      98c59262ad396b4da5b0a3e82f819923f860e974f687c4fff9b852f25a56c50f

    • SHA512

      73d157aec3d94767b1f5233617d148cb440dca8ba6381c2979f4c5265273294fefad380afa9b401df80fd9661eeae643fd23448c71a66e7ceb2e796a2a4156ea

    • SSDEEP

      1536:9lnq2U5JsS6Nh5wFXscKjrtN/5zqGyiNwmHWR03aY:9c9HQNh5wFXscKXHRzaiNnVqY

    Score
    10/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks