General

  • Target

    050bb939e0e8fe2776d812bdd2f755ce33fe945afa29e9e2fd32a11cfdc585a9

  • Size

    52KB

  • Sample

    240404-wvq97afb54

  • MD5

    04f69efdcad2af5d0a08b9d9f80077f1

  • SHA1

    02b58fbf7035db4693412a84569e2ce59fc8520f

  • SHA256

    050bb939e0e8fe2776d812bdd2f755ce33fe945afa29e9e2fd32a11cfdc585a9

  • SHA512

    d37c591f4db435905de3d774d3156888cba97c835653f5b1ff6358f57ee7834c328b845e25d3da8348e507af495c4aa0481919653a47d8a78cdd013f5c8201b9

  • SSDEEP

    768:xLzrPIsVU080KYmz/IfhX5GaeimBYsHotogR8ARwre7zgVqMNWcRFD7DpD8:lvU080dGSh4Fb08ATzgV5Wco

Score
10/10

Malware Config

Targets

    • Target

      050bb939e0e8fe2776d812bdd2f755ce33fe945afa29e9e2fd32a11cfdc585a9

    • Size

      52KB

    • MD5

      04f69efdcad2af5d0a08b9d9f80077f1

    • SHA1

      02b58fbf7035db4693412a84569e2ce59fc8520f

    • SHA256

      050bb939e0e8fe2776d812bdd2f755ce33fe945afa29e9e2fd32a11cfdc585a9

    • SHA512

      d37c591f4db435905de3d774d3156888cba97c835653f5b1ff6358f57ee7834c328b845e25d3da8348e507af495c4aa0481919653a47d8a78cdd013f5c8201b9

    • SSDEEP

      768:xLzrPIsVU080KYmz/IfhX5GaeimBYsHotogR8ARwre7zgVqMNWcRFD7DpD8:lvU080dGSh4Fb08ATzgV5Wco

    Score
    9/10
    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks