General

  • Target

    dad4ae59b06afc11d3ce2f6f7ed1211b

  • Size

    88KB

  • Sample

    240321-gcxxpacg97

  • MD5

    dad4ae59b06afc11d3ce2f6f7ed1211b

  • SHA1

    0beca8b1e6957f7ca23cb90405cda2c21785cb5b

  • SHA256

    41b3c5eba40130b0be50921969e69ab0065c124df1723081025bcdd886b1eb01

  • SHA512

    e9222dfc8f8e5730021cf9122b31e5e4b6f202fa193d4d7b86dbb84f8666be4592aac96bf6cfb6aa8e451c0265a87697fc62515100102105a13922fb6d23711d

  • SSDEEP

    1536:VdHIcz+j0W2QA5v974JyZuC+UjUj6TifB1ZBQPN:jIi+jV2n7WyZuC+CiQifPZBQPN

Malware Config

Targets

    • Target

      dad4ae59b06afc11d3ce2f6f7ed1211b

    • Size

      88KB

    • MD5

      dad4ae59b06afc11d3ce2f6f7ed1211b

    • SHA1

      0beca8b1e6957f7ca23cb90405cda2c21785cb5b

    • SHA256

      41b3c5eba40130b0be50921969e69ab0065c124df1723081025bcdd886b1eb01

    • SHA512

      e9222dfc8f8e5730021cf9122b31e5e4b6f202fa193d4d7b86dbb84f8666be4592aac96bf6cfb6aa8e451c0265a87697fc62515100102105a13922fb6d23711d

    • SSDEEP

      1536:VdHIcz+j0W2QA5v974JyZuC+UjUj6TifB1ZBQPN:jIi+jV2n7WyZuC+CiQifPZBQPN

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Drops desktop.ini file(s)

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks