General

  • Target

    037cde8cac40b5de7eec8c6f9d149e2c

  • Size

    260KB

  • Sample

    231224-sqs2fachem

  • MD5

    037cde8cac40b5de7eec8c6f9d149e2c

  • SHA1

    85ea2a77bc93c7edda70cd33dc29b1992fd72f98

  • SHA256

    3a41417f6fbac1756a6929f1608f470c4ea2ab69ed434815afb0db788b3e9784

  • SHA512

    6f7f31d265fe26ab1e834db00d8633071e2e0949229c2f59388960c61eb18d7adf827cff9bcf657c7489d3c60ea03aefc5a50f84c6202441386628e843f59c69

  • SSDEEP

    3072:cgfAlNTvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGVu:cdGgTSrMaIl/jcLijfHFEHWzXvjT85R

Score
10/10

Malware Config

Targets

    • Target

      037cde8cac40b5de7eec8c6f9d149e2c

    • Size

      260KB

    • MD5

      037cde8cac40b5de7eec8c6f9d149e2c

    • SHA1

      85ea2a77bc93c7edda70cd33dc29b1992fd72f98

    • SHA256

      3a41417f6fbac1756a6929f1608f470c4ea2ab69ed434815afb0db788b3e9784

    • SHA512

      6f7f31d265fe26ab1e834db00d8633071e2e0949229c2f59388960c61eb18d7adf827cff9bcf657c7489d3c60ea03aefc5a50f84c6202441386628e843f59c69

    • SSDEEP

      3072:cgfAlNTvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGVu:cdGgTSrMaIl/jcLijfHFEHWzXvjT85R

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks