General

  • Target

    a7548e73f076cf5e5c79f1f055a02ed4.exe

  • Size

    260KB

  • Sample

    240107-xz7cmsdbf3

  • MD5

    a7548e73f076cf5e5c79f1f055a02ed4

  • SHA1

    1a2d927200ba3b9b2bb3a491b6ff5325b5d5f27b

  • SHA256

    11e7989a5554a8b141e3c9f0175fbcf34fe0d83b1f7fa11b1a4c8d1adb12ce54

  • SHA512

    1f53701ab29c20a792603fd453d083bc250dfe1f41689f070c570e787a62ca81767609ecf810d0ebefc52e697dff398e6d8e23d8f1cbcd5dc298eb2b46be167e

  • SSDEEP

    3072:+gfAlNTvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGV:+dCgTSrMaIl/jcLijfHFEHWzXvjT85R

Score
10/10

Malware Config

Targets

    • Target

      a7548e73f076cf5e5c79f1f055a02ed4.exe

    • Size

      260KB

    • MD5

      a7548e73f076cf5e5c79f1f055a02ed4

    • SHA1

      1a2d927200ba3b9b2bb3a491b6ff5325b5d5f27b

    • SHA256

      11e7989a5554a8b141e3c9f0175fbcf34fe0d83b1f7fa11b1a4c8d1adb12ce54

    • SHA512

      1f53701ab29c20a792603fd453d083bc250dfe1f41689f070c570e787a62ca81767609ecf810d0ebefc52e697dff398e6d8e23d8f1cbcd5dc298eb2b46be167e

    • SSDEEP

      3072:+gfAlNTvh25n/kZoSUjMqXnpWAkpAmTSrMaIOYt/jo7LAtPhjjtZnfHFEoWBfGV:+dCgTSrMaIl/jcLijfHFEHWzXvjT85R

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks