General

  • Target

    Eagle-Proxy-Scraper.zip

  • Size

    9.8MB

  • Sample

    240607-av7raaed81

  • MD5

    55d929526bf7d3753c80f00d9e651dab

  • SHA1

    1abe257c57d4f9af910cc2ef2683fca090f96c66

  • SHA256

    9396e390a98f4087714b66275f72afd940fac399d049101567acaded49e08f9a

  • SHA512

    f47b2cc347fadb1552efcfcbf47ef434d8ab0f80088810964f784ae43deb120621541cdadb8d3eb0659604e6bb42b27997613c1379bc8a318445f3e6ffb9e0b3

  • SSDEEP

    196608:7ohX+nPOzHy9snAjo6gy3zllY2iD+ksd11oHFaWyEmG:7ohOnGzHy9eAjmylYXqvUGs

Score
7/10

Malware Config

Targets

    • Target

      Eagle-Proxy-Scraper.exe

    • Size

      9.8MB

    • MD5

      18ee8cdf6aed10d61d4828607ec170de

    • SHA1

      53d2cf60c8fce58e744497a7691943735eb8507f

    • SHA256

      d92eb9bb231cebaab7e021e48b134a77aab9b8866393183c4d603b95632bed96

    • SHA512

      2229df87ab48080900df2d73b6582cc72b4047976b5d3668651c2c46792040e111aa93a79caf8abd08842c0cdf5152b5d7e23a2d73172adf47e0a31742f460ec

    • SSDEEP

      196608:9K4070lT0HzMFUjejm04SVzVDg2g9sM0zbly7lyQgWx:9KVglIHzMFgej4EDgxmTqKI

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks