General

  • Target

    2024-06-13_78b45aebaddd7ea6d4791d7ca55dd5a3_mafia_nionspy

  • Size

    344KB

  • Sample

    240613-deemcawajl

  • MD5

    78b45aebaddd7ea6d4791d7ca55dd5a3

  • SHA1

    5cf05eef807dd80a80c639b0f04fe533fa7f6630

  • SHA256

    1a15523d90672be8d0eedc53615283e29c948ee17e065ca7ada580e1111f4648

  • SHA512

    1a3dbfcc9b88d846d79c4250b68c6313f8c394a8212dbff35fcc4b6b1b2131f2a94dd2978e874a56bfd9ca20565df319bc1e2edaed27a8bfbb85762079b10908

  • SSDEEP

    6144:2Tz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:2TBPFV0RyWl3h2E+7pYm0

Score
7/10

Malware Config

Targets

    • Target

      2024-06-13_78b45aebaddd7ea6d4791d7ca55dd5a3_mafia_nionspy

    • Size

      344KB

    • MD5

      78b45aebaddd7ea6d4791d7ca55dd5a3

    • SHA1

      5cf05eef807dd80a80c639b0f04fe533fa7f6630

    • SHA256

      1a15523d90672be8d0eedc53615283e29c948ee17e065ca7ada580e1111f4648

    • SHA512

      1a3dbfcc9b88d846d79c4250b68c6313f8c394a8212dbff35fcc4b6b1b2131f2a94dd2978e874a56bfd9ca20565df319bc1e2edaed27a8bfbb85762079b10908

    • SSDEEP

      6144:2Tz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDBRm1+gmN:2TBPFV0RyWl3h2E+7pYm0

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks