General

  • Target

    2024-06-03_ac6d265ef62f26c9ff48ca62d9d61ac7_mafia_nionspy

  • Size

    280KB

  • Sample

    240603-jpdexsge2s

  • MD5

    ac6d265ef62f26c9ff48ca62d9d61ac7

  • SHA1

    a669d026bdf3b046f4c3561c249701721e5ceb3f

  • SHA256

    46079d946566af7b8734f2810b23eb0f7f020e880ccc1df9ddd33f5b81bc0a77

  • SHA512

    f0309de8ec327b6098c44bbc4d1269a051916065a3bd736a56c9bd996fd8f84cd70fbb1f01d84be6ff4a0c04ce52ee347ae1706121f55b5a3f37d65cb0157f47

  • SSDEEP

    6144:WQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:WQMyfmNFHfnWfhLZVHmOog

Score
7/10

Malware Config

Targets

    • Target

      2024-06-03_ac6d265ef62f26c9ff48ca62d9d61ac7_mafia_nionspy

    • Size

      280KB

    • MD5

      ac6d265ef62f26c9ff48ca62d9d61ac7

    • SHA1

      a669d026bdf3b046f4c3561c249701721e5ceb3f

    • SHA256

      46079d946566af7b8734f2810b23eb0f7f020e880ccc1df9ddd33f5b81bc0a77

    • SHA512

      f0309de8ec327b6098c44bbc4d1269a051916065a3bd736a56c9bd996fd8f84cd70fbb1f01d84be6ff4a0c04ce52ee347ae1706121f55b5a3f37d65cb0157f47

    • SSDEEP

      6144:WQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:WQMyfmNFHfnWfhLZVHmOog

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks