General

  • Target

    Not_Protect.exe

  • Size

    1.5MB

  • Sample

    240604-b4le3shf69

  • MD5

    0c855035327347a6fe86f4d3072f2857

  • SHA1

    866595e4ad1056849594c292d871dda20737a526

  • SHA256

    8b18494bdf31570cf38d064ef9ef1cf8ae761627cf1b40d793074061653bd6e1

  • SHA512

    5fad2b81771713664a1e1fb32da64b1f370407a75f7e4640d337874a25bc5795135b09f1b98e3399da370bd8085b644c01ebe694ea12edda5aaf5e5d8dbeed9d

  • SSDEEP

    49152:OfQopNW5zJvG4nuzMUV5MTSV7fjP6FmOj6:asvkV5MuV7fjP6Ftj6

Score
8/10

Malware Config

Targets

    • Target

      Not_Protect.exe

    • Size

      1.5MB

    • MD5

      0c855035327347a6fe86f4d3072f2857

    • SHA1

      866595e4ad1056849594c292d871dda20737a526

    • SHA256

      8b18494bdf31570cf38d064ef9ef1cf8ae761627cf1b40d793074061653bd6e1

    • SHA512

      5fad2b81771713664a1e1fb32da64b1f370407a75f7e4640d337874a25bc5795135b09f1b98e3399da370bd8085b644c01ebe694ea12edda5aaf5e5d8dbeed9d

    • SSDEEP

      49152:OfQopNW5zJvG4nuzMUV5MTSV7fjP6FmOj6:asvkV5MuV7fjP6Ftj6

    Score
    8/10
    • Stops running service(s)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks