General

  • Target

    ab3e1a97533769eab673322dc0f1f15c148f32592b148813c98e7a83e1f16c5a

  • Size

    420KB

  • Sample

    240609-jbk8lsgd29

  • MD5

    336bf507ed9fb8bbe231a5b101ff5639

  • SHA1

    c0cc6e211ba9eb89d443c0c12d903ff6c8f41c39

  • SHA256

    ab3e1a97533769eab673322dc0f1f15c148f32592b148813c98e7a83e1f16c5a

  • SHA512

    4c9588c840a01af3d17bc6b3b91233100e8ae11c3398b25f668f5bc2d1a3a41b9e0ec5483103b8e6005535c0da5640cf1162994f522574ed688299d003213be9

  • SSDEEP

    12288:TBQbOtLTGqONXURCtrMpOR5qkO2OODHu:ey/OFNRMNkO12u

Score
7/10

Malware Config

Targets

    • Target

      ab3e1a97533769eab673322dc0f1f15c148f32592b148813c98e7a83e1f16c5a

    • Size

      420KB

    • MD5

      336bf507ed9fb8bbe231a5b101ff5639

    • SHA1

      c0cc6e211ba9eb89d443c0c12d903ff6c8f41c39

    • SHA256

      ab3e1a97533769eab673322dc0f1f15c148f32592b148813c98e7a83e1f16c5a

    • SHA512

      4c9588c840a01af3d17bc6b3b91233100e8ae11c3398b25f668f5bc2d1a3a41b9e0ec5483103b8e6005535c0da5640cf1162994f522574ed688299d003213be9

    • SSDEEP

      12288:TBQbOtLTGqONXURCtrMpOR5qkO2OODHu:ey/OFNRMNkO12u

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks