General

  • Target

    5d79e8fbea67251c8c04fd386f40ef2c786de999af24d96177f587c490d05ec2

  • Size

    12KB

  • Sample

    240602-2hnleshe41

  • MD5

    4aabdd8b4392724fa65c7dd0ac69646b

  • SHA1

    ecc6765247da630c46c818fb074539113c99b847

  • SHA256

    5d79e8fbea67251c8c04fd386f40ef2c786de999af24d96177f587c490d05ec2

  • SHA512

    4007068331b7f2cb159d22f692b9be4305abbe01d0745980a605cebcf24513c94d556b8cfa0ce575a00c3f022f00d2e10bf9668fee2eb3f97ed17421baa57459

  • SSDEEP

    384:sL7li/2z6aq2DcEQvdhcJKLTp/NK9xaL5:qNM/Q9cL5

Score
7/10

Malware Config

Targets

    • Target

      5d79e8fbea67251c8c04fd386f40ef2c786de999af24d96177f587c490d05ec2

    • Size

      12KB

    • MD5

      4aabdd8b4392724fa65c7dd0ac69646b

    • SHA1

      ecc6765247da630c46c818fb074539113c99b847

    • SHA256

      5d79e8fbea67251c8c04fd386f40ef2c786de999af24d96177f587c490d05ec2

    • SHA512

      4007068331b7f2cb159d22f692b9be4305abbe01d0745980a605cebcf24513c94d556b8cfa0ce575a00c3f022f00d2e10bf9668fee2eb3f97ed17421baa57459

    • SSDEEP

      384:sL7li/2z6aq2DcEQvdhcJKLTp/NK9xaL5:qNM/Q9cL5

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks