General

  • Target

    SecuriteInfo.com.Win32.Malware-gen.14852.822.exe

  • Size

    6.5MB

  • Sample

    231221-rneklaafcq

  • MD5

    8fc868f86ee50172a6135d3a58d3495f

  • SHA1

    b26cd7a4ca5229e05e51068852539549b3838738

  • SHA256

    fefd30308f73092c122fe29921534fbeea6659c32dfd68fe234bcdbabdf8d1ec

  • SHA512

    36fad19ee3f5a11cc1300d67cc59355bf2a2452cd89b75e5aa80aa2b893b63b0ed6acfb7dfe5fbd66170911c7e00602514965de2c24012c1d27bffa551aab2c7

  • SSDEEP

    98304:oLRKr2ABiBQPGrOr17nGPVzN1iiriD0dbZHX7rYEnpMoC1y5EHuj4QdrwDOuL:oL5ABRPGSrlnGPVH7iDe0EpMoCSeuHG1

Score
7/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.Win32.Malware-gen.14852.822.exe

    • Size

      6.5MB

    • MD5

      8fc868f86ee50172a6135d3a58d3495f

    • SHA1

      b26cd7a4ca5229e05e51068852539549b3838738

    • SHA256

      fefd30308f73092c122fe29921534fbeea6659c32dfd68fe234bcdbabdf8d1ec

    • SHA512

      36fad19ee3f5a11cc1300d67cc59355bf2a2452cd89b75e5aa80aa2b893b63b0ed6acfb7dfe5fbd66170911c7e00602514965de2c24012c1d27bffa551aab2c7

    • SSDEEP

      98304:oLRKr2ABiBQPGrOr17nGPVzN1iiriD0dbZHX7rYEnpMoC1y5EHuj4QdrwDOuL:oL5ABRPGSrlnGPVH7iDe0EpMoCSeuHG1

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks