General

  • Target

    4d1e5f808b9e90b9b7ac9e32b4e11b2ef223745fa707aa4c34f60e3bd72ae42a

  • Size

    134KB

  • Sample

    240610-1rlmrasaqd

  • MD5

    b3b9455487c8b7e0200fd886bd4da330

  • SHA1

    8b8d0118d9b155363e283bf492c7b873b4f79578

  • SHA256

    4d1e5f808b9e90b9b7ac9e32b4e11b2ef223745fa707aa4c34f60e3bd72ae42a

  • SHA512

    1c0a008123801ea3375c02f98417353a19ec831a652b58a5ea14c85245a8ace6b3019f6836899d66743410784b43f246055b98e382d0cef709beffca38222380

  • SSDEEP

    1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SO7:YfU/WF6QMauSuiWNi9eNOl0007NZIO7

Score
10/10

Malware Config

Targets

    • Target

      4d1e5f808b9e90b9b7ac9e32b4e11b2ef223745fa707aa4c34f60e3bd72ae42a

    • Size

      134KB

    • MD5

      b3b9455487c8b7e0200fd886bd4da330

    • SHA1

      8b8d0118d9b155363e283bf492c7b873b4f79578

    • SHA256

      4d1e5f808b9e90b9b7ac9e32b4e11b2ef223745fa707aa4c34f60e3bd72ae42a

    • SHA512

      1c0a008123801ea3375c02f98417353a19ec831a652b58a5ea14c85245a8ace6b3019f6836899d66743410784b43f246055b98e382d0cef709beffca38222380

    • SSDEEP

      1536:YGYU/W2/HG6QMauSV3ixJHABLrmhH7i9eNOOg00GqMIK7aGZh3SO7:YfU/WF6QMauSuiWNi9eNOl0007NZIO7

    Score
    9/10
    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks