General

  • Target

    3b4f6d64b797ba38d8058f95f66ab826f04a02542ba673511bc8ed032282789b

  • Size

    12KB

  • Sample

    240606-1mgg8scd6s

  • MD5

    01195044b3fb4d3b11fac1420e12d524

  • SHA1

    5c1923d02da22a98bcfc98bbd07bfe0288c338ff

  • SHA256

    3b4f6d64b797ba38d8058f95f66ab826f04a02542ba673511bc8ed032282789b

  • SHA512

    806e525b7c5aa5ad46802cdc9efb4d6b1a34fb448c18a2a3d9c0ca0f050434edfb2741606414dad6b19388d357d703da90b13fbabcdcdfba00f54d1265f34cbe

  • SSDEEP

    384:wL7li/2zAq2DcEQvdhcJKLTp/NK9xai4:ucM/Q9ci4

Score
7/10

Malware Config

Targets

    • Target

      3b4f6d64b797ba38d8058f95f66ab826f04a02542ba673511bc8ed032282789b

    • Size

      12KB

    • MD5

      01195044b3fb4d3b11fac1420e12d524

    • SHA1

      5c1923d02da22a98bcfc98bbd07bfe0288c338ff

    • SHA256

      3b4f6d64b797ba38d8058f95f66ab826f04a02542ba673511bc8ed032282789b

    • SHA512

      806e525b7c5aa5ad46802cdc9efb4d6b1a34fb448c18a2a3d9c0ca0f050434edfb2741606414dad6b19388d357d703da90b13fbabcdcdfba00f54d1265f34cbe

    • SSDEEP

      384:wL7li/2zAq2DcEQvdhcJKLTp/NK9xai4:ucM/Q9ci4

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks