6bff7a46b278c90c0ce3aba63259cd0ad99556422a51afb984b67a6c00824448 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

69ca528969ee6d8bff0634484549d639
Size

55KB
Sample

231226-m9rptsbbdn
MD5

69ca528969ee6d8bff0634484549d639
SHA1

95f651536d2705da2f24a9005b804c53916151dd
SHA256

6bff7a46b278c90c0ce3aba63259cd0ad99556422a51afb984b67a6c00824448
SHA512

4e465e6f348d32c4911aaad235c44dcd8d5fc0707ba04f68b5606225ae72a113d8b78ccaa7593e9f8da85b002babf34b43679aa997549130b5390b43e8bcd46c
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/bnkRf/Wdw:V3c1fP4AJJv45TRHz

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  69ca528969ee6d8bff0634484549d639
- Size
  
  55KB
- MD5
  
  69ca528969ee6d8bff0634484549d639
- SHA1
  
  95f651536d2705da2f24a9005b804c53916151dd
- SHA256
  
  6bff7a46b278c90c0ce3aba63259cd0ad99556422a51afb984b67a6c00824448
- SHA512
  
  4e465e6f348d32c4911aaad235c44dcd8d5fc0707ba04f68b5606225ae72a113d8b78ccaa7593e9f8da85b002babf34b43679aa997549130b5390b43e8bcd46c
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/bnkRf/Wdw:V3c1fP4AJJv45TRHz
Score

10^/10

evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2