General

  • Target

    b4dc222bdf7f44c7ff0c5bb8570748ce

  • Size

    206KB

  • Sample

    240305-q8alpshc55

  • MD5

    b4dc222bdf7f44c7ff0c5bb8570748ce

  • SHA1

    68b3c0e90f312b261f7e680f63a8b700ce35915d

  • SHA256

    c7c4e1a1357dc1823448c18dfa93dfb874fc86186b4c4dded17a710c20bf69ce

  • SHA512

    75e17a1a68cd12c4c4f50aff26c05e45300070fff9479be7cbf5c457b2fa79bdaac63f5bc47c129b9f5f81faf4e9e51199c4c7abef7e87f293f9591192c2aead

  • SSDEEP

    6144:Lw2wAbPrxVb5OcViTLaeZvkWaIUSKxrhMeJ:M23bDxVb5KbxkRSE9H

Score
8/10

Malware Config

Targets

    • Target

      b4dc222bdf7f44c7ff0c5bb8570748ce

    • Size

      206KB

    • MD5

      b4dc222bdf7f44c7ff0c5bb8570748ce

    • SHA1

      68b3c0e90f312b261f7e680f63a8b700ce35915d

    • SHA256

      c7c4e1a1357dc1823448c18dfa93dfb874fc86186b4c4dded17a710c20bf69ce

    • SHA512

      75e17a1a68cd12c4c4f50aff26c05e45300070fff9479be7cbf5c457b2fa79bdaac63f5bc47c129b9f5f81faf4e9e51199c4c7abef7e87f293f9591192c2aead

    • SSDEEP

      6144:Lw2wAbPrxVb5OcViTLaeZvkWaIUSKxrhMeJ:M23bDxVb5KbxkRSE9H

    Score
    8/10
    • Adds policy Run key to start application

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks