General

  • Target

    ff03cb1d0fddde80c681ae5fe7ea2119.exe

  • Size

    5.9MB

  • Sample

    231224-j9k1habdhn

  • MD5

    ff03cb1d0fddde80c681ae5fe7ea2119

  • SHA1

    5f8a72a358608c1e650c4196ae3d9ffe498b1087

  • SHA256

    1d29a82f343372d9ccc7ecd56d49b03b5dfcc2afb654de212c7fff5c67085f13

  • SHA512

    0137c3ad8e8f5f72a4cda693b7a43e94d8941c2c2cdff79d0da5b6e310bba7edb7ea04a333fca4d233a92ede731e870a2bcee8f2663b8b69d49d95454d983902

  • SSDEEP

    98304:yHZt5ZGYRjCQuTGOkb9uj5PPY3KuG7GJ9TYKdnSYL2wqcKCBYHDRJ/2LSH:Itl8TZP5oKuG7GJGKddL2wZdW1JDH

Score
7/10

Malware Config

Targets

    • Target

      ff03cb1d0fddde80c681ae5fe7ea2119.exe

    • Size

      5.9MB

    • MD5

      ff03cb1d0fddde80c681ae5fe7ea2119

    • SHA1

      5f8a72a358608c1e650c4196ae3d9ffe498b1087

    • SHA256

      1d29a82f343372d9ccc7ecd56d49b03b5dfcc2afb654de212c7fff5c67085f13

    • SHA512

      0137c3ad8e8f5f72a4cda693b7a43e94d8941c2c2cdff79d0da5b6e310bba7edb7ea04a333fca4d233a92ede731e870a2bcee8f2663b8b69d49d95454d983902

    • SSDEEP

      98304:yHZt5ZGYRjCQuTGOkb9uj5PPY3KuG7GJ9TYKdnSYL2wqcKCBYHDRJ/2LSH:Itl8TZP5oKuG7GJGKddL2wZdW1JDH

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks