General

  • Target

    2024-06-10_cf87178f9b9698d5a96f8368f04d007b_mafia_nionspy

  • Size

    344KB

  • Sample

    240610-g2ccaada7w

  • MD5

    cf87178f9b9698d5a96f8368f04d007b

  • SHA1

    d5a8ecb1b07744660941a42177a2c1feadb37c52

  • SHA256

    79d139e2bab2721c887106bfa2fd332615e094a03f469c21853a3fc144d828fe

  • SHA512

    7d413a5c32513caeb48e04eaa32dd32458974cb3278f485fe45e3c4f310504fd7845886a5530039264744ae8434393785d1214843eda1fc8e18db75f261b8caa

  • SSDEEP

    6144:eTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:eTBPFV0RyWl3h2E+7pYm0

Score
7/10

Malware Config

Targets

    • Target

      2024-06-10_cf87178f9b9698d5a96f8368f04d007b_mafia_nionspy

    • Size

      344KB

    • MD5

      cf87178f9b9698d5a96f8368f04d007b

    • SHA1

      d5a8ecb1b07744660941a42177a2c1feadb37c52

    • SHA256

      79d139e2bab2721c887106bfa2fd332615e094a03f469c21853a3fc144d828fe

    • SHA512

      7d413a5c32513caeb48e04eaa32dd32458974cb3278f485fe45e3c4f310504fd7845886a5530039264744ae8434393785d1214843eda1fc8e18db75f261b8caa

    • SSDEEP

      6144:eTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:eTBPFV0RyWl3h2E+7pYm0

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks