General

  • Target

    4f5e01d7c0ec6e6e9df19f76924c71b10dc552992601db2ed326c9fa07265203.unknown

  • Size

    13KB

  • Sample

    240613-blybxssdml

  • MD5

    32ec4885a3bdd50032c17696bc33f7c9

  • SHA1

    1370d84afb6925a7089432e96c600377a3fb5d3d

  • SHA256

    4f5e01d7c0ec6e6e9df19f76924c71b10dc552992601db2ed326c9fa07265203

  • SHA512

    fc59fc5fa59c8475e5d2fddbf1d3e8b49c60c3077b0d14547137ff499103a2bc066b0e5ab1f97f57b0551e8a1d5987102439e8c93e50df760fa18d38ff109432

  • SSDEEP

    192:rl4nqvnGMCtI8vPc2BWAK/MbQ2B6Bn/Wlxj4eOEtVGYc8NV:rlx1YI8vPFM+b5YNY7TBc8T

Score
8/10

Malware Config

Targets

    • Target

      4f5e01d7c0ec6e6e9df19f76924c71b10dc552992601db2ed326c9fa07265203.unknown

    • Size

      13KB

    • MD5

      32ec4885a3bdd50032c17696bc33f7c9

    • SHA1

      1370d84afb6925a7089432e96c600377a3fb5d3d

    • SHA256

      4f5e01d7c0ec6e6e9df19f76924c71b10dc552992601db2ed326c9fa07265203

    • SHA512

      fc59fc5fa59c8475e5d2fddbf1d3e8b49c60c3077b0d14547137ff499103a2bc066b0e5ab1f97f57b0551e8a1d5987102439e8c93e50df760fa18d38ff109432

    • SSDEEP

      192:rl4nqvnGMCtI8vPc2BWAK/MbQ2B6Bn/Wlxj4eOEtVGYc8NV:rlx1YI8vPFM+b5YNY7TBc8T

    Score
    8/10
    • Blocklisted process makes network request

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks