General

  • Target

    4a5afbde5ce8289231fa23b19850b911

  • Size

    250KB

  • Sample

    240108-ebzc1saefj

  • MD5

    4a5afbde5ce8289231fa23b19850b911

  • SHA1

    fee0ad470e8520fe755da255866bb98186a9841a

  • SHA256

    e6935a9e42a028a3e1f87a3d7d3590fe1a8eba4480c9c1396a1dfe3febe6bebd

  • SHA512

    423483a17550acab71e16078652e45d2bc729ed8b907ce8a5fe11d327b9f9a699ddb419e6b8dec65ca783b8e3c06406d35fc74246f657a150214ab538896cb0e

  • SSDEEP

    6144:mhieuJDr5T8b2ufqBLjSB/MS7irtIa6cwoD8ZroSfjGFA:DeKrJJuf86AYcwoaoSbr

Score
8/10

Malware Config

Targets

    • Target

      4a5afbde5ce8289231fa23b19850b911

    • Size

      250KB

    • MD5

      4a5afbde5ce8289231fa23b19850b911

    • SHA1

      fee0ad470e8520fe755da255866bb98186a9841a

    • SHA256

      e6935a9e42a028a3e1f87a3d7d3590fe1a8eba4480c9c1396a1dfe3febe6bebd

    • SHA512

      423483a17550acab71e16078652e45d2bc729ed8b907ce8a5fe11d327b9f9a699ddb419e6b8dec65ca783b8e3c06406d35fc74246f657a150214ab538896cb0e

    • SSDEEP

      6144:mhieuJDr5T8b2ufqBLjSB/MS7irtIa6cwoD8ZroSfjGFA:DeKrJJuf86AYcwoaoSbr

    Score
    8/10
    • Modifies Installed Components in the registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks