General

  • Target

    25c54e971344a896355e2e1dc9ed9460

  • Size

    400KB

  • Sample

    231231-dmt21aedcp

  • MD5

    25c54e971344a896355e2e1dc9ed9460

  • SHA1

    a8f1ca641727c6553dfbb915c370bb6a380363a4

  • SHA256

    d44f6c767e1cf79b97bd8ed95dc4d887116e275cbb58c86f52e1191a87578425

  • SHA512

    e4d99d6bc4343d4179ec440392e0490ad63139a3967f7f484786ec6e370f96096263b1a3d9c54a9f2e49cb52234257efb01205fade354dd4337387bcd2071128

  • SSDEEP

    1536:PopTMphUUNbgepuVtSJuSXq/fiTvlATmeX4Z4R4H4i4/o9FKs0z2xoetEPnyexe9:P0UNMMZ8ucz9/tBH3H3O

Score
10/10

Malware Config

Targets

    • Target

      25c54e971344a896355e2e1dc9ed9460

    • Size

      400KB

    • MD5

      25c54e971344a896355e2e1dc9ed9460

    • SHA1

      a8f1ca641727c6553dfbb915c370bb6a380363a4

    • SHA256

      d44f6c767e1cf79b97bd8ed95dc4d887116e275cbb58c86f52e1191a87578425

    • SHA512

      e4d99d6bc4343d4179ec440392e0490ad63139a3967f7f484786ec6e370f96096263b1a3d9c54a9f2e49cb52234257efb01205fade354dd4337387bcd2071128

    • SSDEEP

      1536:PopTMphUUNbgepuVtSJuSXq/fiTvlATmeX4Z4R4H4i4/o9FKs0z2xoetEPnyexe9:P0UNMMZ8ucz9/tBH3H3O

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks