General

  • Target

    c40586e069e2516850436961f3848b7c03d27e8c150c362af3f8c1961ff70101

  • Size

    5.4MB

  • Sample

    231209-tsfpkahcfq

  • MD5

    7f1a45d1319d27be5e9caca49a70a231

  • SHA1

    9997ae59f4690081727b00888c839bf3347590b9

  • SHA256

    c40586e069e2516850436961f3848b7c03d27e8c150c362af3f8c1961ff70101

  • SHA512

    fb674be9647eb485fac2f6795f606844815f86980ba3c1b2e22a4d832e8c1993156c55cf0739663327f967aaa98a76a1e8e85f151f724fa6255d1f16d33beddc

  • SSDEEP

    98304:G/wfP3S6BmgkYspm13pEsCY7r07CZ4R1E4piXodg6:G/M/nBZCmbEsumZ4lpiXou

Score
8/10

Malware Config

Targets

    • Target

      c40586e069e2516850436961f3848b7c03d27e8c150c362af3f8c1961ff70101

    • Size

      5.4MB

    • MD5

      7f1a45d1319d27be5e9caca49a70a231

    • SHA1

      9997ae59f4690081727b00888c839bf3347590b9

    • SHA256

      c40586e069e2516850436961f3848b7c03d27e8c150c362af3f8c1961ff70101

    • SHA512

      fb674be9647eb485fac2f6795f606844815f86980ba3c1b2e22a4d832e8c1993156c55cf0739663327f967aaa98a76a1e8e85f151f724fa6255d1f16d33beddc

    • SSDEEP

      98304:G/wfP3S6BmgkYspm13pEsCY7r07CZ4R1E4piXodg6:G/M/nBZCmbEsumZ4lpiXou

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks