General

  • Target

    a484b24eed19908107f958b6c17e2b06

  • Size

    9.4MB

  • Sample

    240225-y73vvsbd47

  • MD5

    a484b24eed19908107f958b6c17e2b06

  • SHA1

    c3d59fe85bbd1d49c4bd6c70e7731551fe0ba943

  • SHA256

    bf6faf6c09d8577701ba6b9c2e0eea94e0d1faf84f461c784343868025a9f692

  • SHA512

    26493d39d32b01f0d841a3fc2d7bd5e87fbcd8af331f61c026670492dcc8cd94a5abfa88c0f641ad7e2cddbdd14cdef8b3edc9355709d7f6bb747b6b98b7a796

  • SSDEEP

    196608:a0+NPTry0/xR/8q6kiUqZN+KITV+UdUpXKolgq6K/ON:a0wnyGtbiFT+bYU2pX/Z6K/u

Score
7/10

Malware Config

Targets

    • Target

      a484b24eed19908107f958b6c17e2b06

    • Size

      9.4MB

    • MD5

      a484b24eed19908107f958b6c17e2b06

    • SHA1

      c3d59fe85bbd1d49c4bd6c70e7731551fe0ba943

    • SHA256

      bf6faf6c09d8577701ba6b9c2e0eea94e0d1faf84f461c784343868025a9f692

    • SHA512

      26493d39d32b01f0d841a3fc2d7bd5e87fbcd8af331f61c026670492dcc8cd94a5abfa88c0f641ad7e2cddbdd14cdef8b3edc9355709d7f6bb747b6b98b7a796

    • SSDEEP

      196608:a0+NPTry0/xR/8q6kiUqZN+KITV+UdUpXKolgq6K/ON:a0wnyGtbiFT+bYU2pX/Z6K/u

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

MITRE ATT&CK Enterprise v15

Tasks