General

  • Target

    3de1aae9bb3170302c83d08b4f68e6c3294a32bd79d146d9673dfbee0bc860cd

  • Size

    5.4MB

  • Sample

    231205-e1sxjahe74

  • MD5

    dceecf2fe6cf1d68aaadccfdcebc499a

  • SHA1

    a5c91a20eadb2bd7abb00ddfa1303ca0afb45b42

  • SHA256

    3de1aae9bb3170302c83d08b4f68e6c3294a32bd79d146d9673dfbee0bc860cd

  • SHA512

    2d15cb210db8849eaa0a085cbe13c2657c838ad2137bca5a0be5e6702efa8d51c38feb70e865cbd2332f14ce7646476e5c8539b8679d659b2ad9c6bf684c64af

  • SSDEEP

    98304:0x7OHGbt4dCiolX3TcXpo6sHr/nuvv4lc0PTRgkhbA+RgzgkZ:0xKHC4dCRzbqvX0JKigvZ

Score
8/10

Malware Config

Targets

    • Target

      3de1aae9bb3170302c83d08b4f68e6c3294a32bd79d146d9673dfbee0bc860cd

    • Size

      5.4MB

    • MD5

      dceecf2fe6cf1d68aaadccfdcebc499a

    • SHA1

      a5c91a20eadb2bd7abb00ddfa1303ca0afb45b42

    • SHA256

      3de1aae9bb3170302c83d08b4f68e6c3294a32bd79d146d9673dfbee0bc860cd

    • SHA512

      2d15cb210db8849eaa0a085cbe13c2657c838ad2137bca5a0be5e6702efa8d51c38feb70e865cbd2332f14ce7646476e5c8539b8679d659b2ad9c6bf684c64af

    • SSDEEP

      98304:0x7OHGbt4dCiolX3TcXpo6sHr/nuvv4lc0PTRgkhbA+RgzgkZ:0xKHC4dCRzbqvX0JKigvZ

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks