General

  • Target

    bacb14277cfed7b68453deea016c27099e8560c05fdc72a3998767d1406528ab

  • Size

    80KB

  • Sample

    240609-jka41age49

  • MD5

    ae5e818a9ef0cf433ece45015b650378

  • SHA1

    83d9f4dd4878b7551fff4ab988e68b5efdea92bb

  • SHA256

    bacb14277cfed7b68453deea016c27099e8560c05fdc72a3998767d1406528ab

  • SHA512

    8c470b3e279e5425030ebe4354a149d3c769a77980273b457b47cc5ae2be09b4d5a8fb6c06ddf5d98cec258cedc3eb6cca8842ace58b58e3b8526fb5717dd42c

  • SSDEEP

    1536:bDcWLfIbgEp10gyX/dtnTHNWnnn6222229B:bDXL0n0gyX/d1re22229B

Score
10/10

Malware Config

Targets

    • Target

      bacb14277cfed7b68453deea016c27099e8560c05fdc72a3998767d1406528ab

    • Size

      80KB

    • MD5

      ae5e818a9ef0cf433ece45015b650378

    • SHA1

      83d9f4dd4878b7551fff4ab988e68b5efdea92bb

    • SHA256

      bacb14277cfed7b68453deea016c27099e8560c05fdc72a3998767d1406528ab

    • SHA512

      8c470b3e279e5425030ebe4354a149d3c769a77980273b457b47cc5ae2be09b4d5a8fb6c06ddf5d98cec258cedc3eb6cca8842ace58b58e3b8526fb5717dd42c

    • SSDEEP

      1536:bDcWLfIbgEp10gyX/dtnTHNWnnn6222229B:bDXL0n0gyX/d1re22229B

    Score
    9/10
    • Detects Windows executables referencing non-Windows User-Agents

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks