General

  • Target

    00934cbc479440d1c37e697351dbbb25

  • Size

    288KB

  • Sample

    231229-w7bp9sefa7

  • MD5

    00934cbc479440d1c37e697351dbbb25

  • SHA1

    4f91b81d3a0296e1e1a2a201f2fb13ba2f6a2491

  • SHA256

    13941558491d6c1582eae8c3a1a91e29e188017879fc540eb4a544efc89f5955

  • SHA512

    f1c8c71bad98b79e44ddb22f81b5eb7192f373f05b5f418b6712be5834e5a366597d7a0ffad031518e288d907f7f5d50e1e76d10a1c398251cccfae069e8fa10

  • SSDEEP

    1536:Pop4MphW3LAxnH5NRoszy/0kr0rSXq/fiTvlATmeX4Z4R4H4i4/o9FKs0z2xoetn:g23wD00Vucz9/tBH3H3+

Score
10/10

Malware Config

Targets

    • Target

      00934cbc479440d1c37e697351dbbb25

    • Size

      288KB

    • MD5

      00934cbc479440d1c37e697351dbbb25

    • SHA1

      4f91b81d3a0296e1e1a2a201f2fb13ba2f6a2491

    • SHA256

      13941558491d6c1582eae8c3a1a91e29e188017879fc540eb4a544efc89f5955

    • SHA512

      f1c8c71bad98b79e44ddb22f81b5eb7192f373f05b5f418b6712be5834e5a366597d7a0ffad031518e288d907f7f5d50e1e76d10a1c398251cccfae069e8fa10

    • SSDEEP

      1536:Pop4MphW3LAxnH5NRoszy/0kr0rSXq/fiTvlATmeX4Z4R4H4i4/o9FKs0z2xoetn:g23wD00Vucz9/tBH3H3+

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks