General

  • Target

    a865d482d4329507cc21923102eb59df26059ef81cd334585ecf34e807619377

  • Size

    188KB

  • Sample

    240420-bmv8ysdd7z

  • MD5

    c31e910f1e75151a22f9e61e3a493f31

  • SHA1

    8ee5e51a3d161114abbebfed28f123623f104f7d

  • SHA256

    a865d482d4329507cc21923102eb59df26059ef81cd334585ecf34e807619377

  • SHA512

    1ae8ef940ffb6fc7423135c3bd88a3bcd12c161cbb12d69c218ae75c0e966661d66be23878090dc1dfbfc8bb33ed2bb69d4e01402f0b692607bd21c634ca5f22

  • SSDEEP

    3072:x+bMaOP+ph5b/VgpalJEBNmKnvmb7/D26Dv82KSaIwbsf3vxY33kiSEzTDySnI0N:uMagwhh/W4lJhKnvmb7/D26DE2KSabbF

Score
10/10

Malware Config

Targets

    • Target

      a865d482d4329507cc21923102eb59df26059ef81cd334585ecf34e807619377

    • Size

      188KB

    • MD5

      c31e910f1e75151a22f9e61e3a493f31

    • SHA1

      8ee5e51a3d161114abbebfed28f123623f104f7d

    • SHA256

      a865d482d4329507cc21923102eb59df26059ef81cd334585ecf34e807619377

    • SHA512

      1ae8ef940ffb6fc7423135c3bd88a3bcd12c161cbb12d69c218ae75c0e966661d66be23878090dc1dfbfc8bb33ed2bb69d4e01402f0b692607bd21c634ca5f22

    • SSDEEP

      3072:x+bMaOP+ph5b/VgpalJEBNmKnvmb7/D26Dv82KSaIwbsf3vxY33kiSEzTDySnI0N:uMagwhh/W4lJhKnvmb7/D26DE2KSabbF

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks