General

  • Target

    a57fa2fbfbb72b3f318ad8164554d6d6.unknown

  • Size

    70KB

  • Sample

    240107-x1yrwsdbg6

  • MD5

    a57fa2fbfbb72b3f318ad8164554d6d6

  • SHA1

    1a15b663d6d8841f2654d22b0755669ddab83533

  • SHA256

    30d9326d55281d41accfbbceb144f8bd1de571587286150e0742ce919242234f

  • SHA512

    74ecbffbfdf3a5af0f136620a56b0a21f2ed685a09c9fc6946a5c43ffe69a9e077f1382cb3395d21043a0cd88aa627219e56ea440b9e9c56963d073966e1d416

  • SSDEEP

    1536:EYax+vLHr11AQYyqGJHQYCDEtU6dLTR97lBb:M+v9xQYNtU6Zvlx

Score
10/10

Malware Config

Targets

    • Target

      a57fa2fbfbb72b3f318ad8164554d6d6.unknown

    • Size

      70KB

    • MD5

      a57fa2fbfbb72b3f318ad8164554d6d6

    • SHA1

      1a15b663d6d8841f2654d22b0755669ddab83533

    • SHA256

      30d9326d55281d41accfbbceb144f8bd1de571587286150e0742ce919242234f

    • SHA512

      74ecbffbfdf3a5af0f136620a56b0a21f2ed685a09c9fc6946a5c43ffe69a9e077f1382cb3395d21043a0cd88aa627219e56ea440b9e9c56963d073966e1d416

    • SSDEEP

      1536:EYax+vLHr11AQYyqGJHQYCDEtU6dLTR97lBb:M+v9xQYNtU6Zvlx

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks