General

  • Target

    5b3cceffa0626f32275861b5fa7b97b35861b22b1de555572ef46fe1ec4339e6

  • Size

    12KB

  • Sample

    240602-2ckmksad26

  • MD5

    8f517714194b34a774c02ca5315be236

  • SHA1

    60a686e2ffaaf8834111d12f7cdf138f28116a81

  • SHA256

    5b3cceffa0626f32275861b5fa7b97b35861b22b1de555572ef46fe1ec4339e6

  • SHA512

    bfed2e14d9b3ba3ed178f847c7a99865eb85ce1aae59c2bd29c81af4cfd16f3e3fed6a9df80445706b4a89586db2108c973564982e68f7176dddcdc8cf1c2428

  • SSDEEP

    384:HL7li/2z3q2DcEQvdhcJKLTp/NK9xaZR:rDM/Q9cZR

Score
7/10

Malware Config

Targets

    • Target

      5b3cceffa0626f32275861b5fa7b97b35861b22b1de555572ef46fe1ec4339e6

    • Size

      12KB

    • MD5

      8f517714194b34a774c02ca5315be236

    • SHA1

      60a686e2ffaaf8834111d12f7cdf138f28116a81

    • SHA256

      5b3cceffa0626f32275861b5fa7b97b35861b22b1de555572ef46fe1ec4339e6

    • SHA512

      bfed2e14d9b3ba3ed178f847c7a99865eb85ce1aae59c2bd29c81af4cfd16f3e3fed6a9df80445706b4a89586db2108c973564982e68f7176dddcdc8cf1c2428

    • SSDEEP

      384:HL7li/2z3q2DcEQvdhcJKLTp/NK9xaZR:rDM/Q9cZR

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks