General

  • Target

    6058af976e1544a4c9b3fec5fcc3267c67b8777cf48eb0c53ed5ea206049c387

  • Size

    12KB

  • Sample

    240531-19raysfe2t

  • MD5

    34df31bc804d54f5f4340f16f74f5e94

  • SHA1

    91ebaf27d24aec3edd41a065baaf368944c3b0be

  • SHA256

    6058af976e1544a4c9b3fec5fcc3267c67b8777cf48eb0c53ed5ea206049c387

  • SHA512

    62acec70f50b621f92f56e79b5463bc496e3c9d954e1041978aa12b21f93c27e3e7603093e51dedb4c081a4261b126da6b0c23dd324e160ca0007966e3965251

  • SSDEEP

    384:TL7li/2z7q2DcEQvdhcJKLTp/NK9xaUW:3vM/Q9cUW

Score
7/10

Malware Config

Targets

    • Target

      6058af976e1544a4c9b3fec5fcc3267c67b8777cf48eb0c53ed5ea206049c387

    • Size

      12KB

    • MD5

      34df31bc804d54f5f4340f16f74f5e94

    • SHA1

      91ebaf27d24aec3edd41a065baaf368944c3b0be

    • SHA256

      6058af976e1544a4c9b3fec5fcc3267c67b8777cf48eb0c53ed5ea206049c387

    • SHA512

      62acec70f50b621f92f56e79b5463bc496e3c9d954e1041978aa12b21f93c27e3e7603093e51dedb4c081a4261b126da6b0c23dd324e160ca0007966e3965251

    • SSDEEP

      384:TL7li/2z7q2DcEQvdhcJKLTp/NK9xaUW:3vM/Q9cUW

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks