General

  • Target

    8f730c033f7447d429b3b1eec1fe0d86

  • Size

    153KB

  • Sample

    240204-sdrb3sefdm

  • MD5

    8f730c033f7447d429b3b1eec1fe0d86

  • SHA1

    f38f2a6c57b95d479fb92dc3dd8ad509afa30ac3

  • SHA256

    a7eefc78d074a0985a9a6b11108eb5b325dc3cae4699c18cce7f9148486eb4fb

  • SHA512

    1138e48f1b8dd1fd5578e6e287b748b2c884a3e7297430fcb4b4229adf94e19b7aeb7e784d0032377cf0ca33c3d3e8de9bc80267e4460ff4feea6ddb365445fc

  • SSDEEP

    3072:QvxetzT1kBMjoQWJQEnUJPIH1TsNyI6SLtA8vIaiJ:yI1kCodm6KPuYNyPSLtlqJ

Score
7/10

Malware Config

Targets

    • Target

      8f730c033f7447d429b3b1eec1fe0d86

    • Size

      153KB

    • MD5

      8f730c033f7447d429b3b1eec1fe0d86

    • SHA1

      f38f2a6c57b95d479fb92dc3dd8ad509afa30ac3

    • SHA256

      a7eefc78d074a0985a9a6b11108eb5b325dc3cae4699c18cce7f9148486eb4fb

    • SHA512

      1138e48f1b8dd1fd5578e6e287b748b2c884a3e7297430fcb4b4229adf94e19b7aeb7e784d0032377cf0ca33c3d3e8de9bc80267e4460ff4feea6ddb365445fc

    • SSDEEP

      3072:QvxetzT1kBMjoQWJQEnUJPIH1TsNyI6SLtA8vIaiJ:yI1kCodm6KPuYNyPSLtlqJ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks