General

  • Target

    2d776e63ecaa65ab94219c88d56d4de801dad6bb25d25eda9d927860a6e58418

  • Size

    12KB

  • Sample

    240606-zhnv3sbg6w

  • MD5

    d023b2f8c347a2ed4ade92133f0be5c9

  • SHA1

    e790564e222a27949236372667c4684d57c7e149

  • SHA256

    2d776e63ecaa65ab94219c88d56d4de801dad6bb25d25eda9d927860a6e58418

  • SHA512

    602f9c694a41c17b58f0d8ca5abdeedfbf292d5ee93a84ec17420db501c16935d30fb059713e40a8237f7df427baebd253e547d38aed1b875c5c49fc602ef709

  • SSDEEP

    384:JL7li/2zdq2DcEQvd2cJKLTp/NK9xaoH:5dM8Q9coH

Score
7/10

Malware Config

Targets

    • Target

      2d776e63ecaa65ab94219c88d56d4de801dad6bb25d25eda9d927860a6e58418

    • Size

      12KB

    • MD5

      d023b2f8c347a2ed4ade92133f0be5c9

    • SHA1

      e790564e222a27949236372667c4684d57c7e149

    • SHA256

      2d776e63ecaa65ab94219c88d56d4de801dad6bb25d25eda9d927860a6e58418

    • SHA512

      602f9c694a41c17b58f0d8ca5abdeedfbf292d5ee93a84ec17420db501c16935d30fb059713e40a8237f7df427baebd253e547d38aed1b875c5c49fc602ef709

    • SSDEEP

      384:JL7li/2zdq2DcEQvd2cJKLTp/NK9xaoH:5dM8Q9coH

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

MITRE ATT&CK Enterprise v15

Tasks