General

  • Target

    lol.exe

  • Size

    1.3MB

  • Sample

    240523-qq281adb53

  • MD5

    5a799f2621da3f9115237c3d09826e10

  • SHA1

    3452da333a65ddfc8a485aa40b2e378adf353461

  • SHA256

    511d41c74e330a84e1325a5f06eef88b1f07f6246a3df2e913c7ef09a6c62b03

  • SHA512

    9895545cc552ce9f32873c250556db48f7e6c5ad7675b79a75f935f6d763847db0694a15e09a20f3bcc87ace17902e9e285a6a8007b163e988a15b93247476ac

  • SSDEEP

    12288:5oPp56IPVCGsP4GIaWzgMg7v3qnCiWErQohh0F49CJ8lnybQg9BFg9UmTRHleFc:5oeI9SvaHMv6CGrjBnybQg+mmhwFc

Score
7/10

Malware Config

Targets

    • Target

      lol.exe

    • Size

      1.3MB

    • MD5

      5a799f2621da3f9115237c3d09826e10

    • SHA1

      3452da333a65ddfc8a485aa40b2e378adf353461

    • SHA256

      511d41c74e330a84e1325a5f06eef88b1f07f6246a3df2e913c7ef09a6c62b03

    • SHA512

      9895545cc552ce9f32873c250556db48f7e6c5ad7675b79a75f935f6d763847db0694a15e09a20f3bcc87ace17902e9e285a6a8007b163e988a15b93247476ac

    • SSDEEP

      12288:5oPp56IPVCGsP4GIaWzgMg7v3qnCiWErQohh0F49CJ8lnybQg9BFg9UmTRHleFc:5oeI9SvaHMv6CGrjBnybQg+mmhwFc

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks