General

  • Target

    da5b5ea95b97ae4a0f99ad8115cf783c

  • Size

    42KB

  • Sample

    240321-b1pnbsgf62

  • MD5

    da5b5ea95b97ae4a0f99ad8115cf783c

  • SHA1

    16a6c4df9963742ef2fb5bdfe5a0b1d439169ae1

  • SHA256

    30a88a7e036a925607ea76b10cb95bea5b6907b4cf3520e59e15bf4b0c37f48d

  • SHA512

    87b1786ea1e86444ebaed97f322741eb3401471f6f1fea04b268d8d1e1c30fb30934858c0eb83e7645a2a6aefe5537aae78888bcf173d4cb333fea7931697f7d

  • SSDEEP

    768:XxDI8Nwl34Ez8CZ+jSh07a4HwypgUgaagYft9K1:XxDXwvZXOlZgaS0

Score
7/10

Malware Config

Targets

    • Target

      da5b5ea95b97ae4a0f99ad8115cf783c

    • Size

      42KB

    • MD5

      da5b5ea95b97ae4a0f99ad8115cf783c

    • SHA1

      16a6c4df9963742ef2fb5bdfe5a0b1d439169ae1

    • SHA256

      30a88a7e036a925607ea76b10cb95bea5b6907b4cf3520e59e15bf4b0c37f48d

    • SHA512

      87b1786ea1e86444ebaed97f322741eb3401471f6f1fea04b268d8d1e1c30fb30934858c0eb83e7645a2a6aefe5537aae78888bcf173d4cb333fea7931697f7d

    • SSDEEP

      768:XxDI8Nwl34Ez8CZ+jSh07a4HwypgUgaagYft9K1:XxDXwvZXOlZgaS0

    Score
    7/10
    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks