General

  • Target

    9230859045849038400299002ºheated.zip

  • Size

    21.2MB

  • Sample

    240604-ydfs8saa34

  • MD5

    66ac2d7bc2b1e3202e41f9a13d276108

  • SHA1

    34b5ed9707fc0df1ca06faf12fefeacfb57f61e5

  • SHA256

    187ba5b8279a5fc75731afd3be532f4e43549123edfe0ca63d1c6f0b3bf34be3

  • SHA512

    58df30f5b8620ccdde7bfef8232de25130f609a7f0729bae7f5eb5a2d52c137217968d86ee0d6c7690c063fcf36f4c9f41d324d1390a399dec38065bbfb3bf75

  • SSDEEP

    393216:PpJsjRdbyTUStCw/TNTtwar+gL9zkdmiCBnzmO6bszDIFibWCmAjx0o/:PpJs12Ular1BkdjQni5tibxbxf

Malware Config

Targets

    • Target

      9230859045849038400299002ºheated.exe

    • Size

      21.3MB

    • MD5

      75be2721021698473490617774c0d0e6

    • SHA1

      3d0ddc610e93d1471fd645539b853c3cc0258bb2

    • SHA256

      e784b0a3a3ee7f83aa22a4707b1fc90697cca77372128c6f55f0ce047fed3a2c

    • SHA512

      56c07a9eddd0a462d2952e19ea1dc42c25dbb7f85e8b66d696b72bbb5fd03d3feb50d6108695b622aaa5ce7c690dc07a2aa6b1d90b4109623f46ff7a1128397f

    • SSDEEP

      393216:brvZ4RehVyXgAfVorVjZE0uqWVrns/q6Q/djWs0jsLBWtenEEsHWo:/Z4oWg80u3Ts/VGdazBenLm

    • Creates new service(s)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks