General

  • Target

    WhatsApp_Image_2024-05-06.lnk

  • Size

    1KB

  • Sample

    240613-dwjbvsseqf

  • MD5

    4dfdacf33db6ae0341b4d0e65aa3d755

  • SHA1

    ec0d21c64a55b45182fc9aedd3adcecf05ed492f

  • SHA256

    683c61f8dda90ea3b1e76f2ff5ad78dc03ebe3827d56536988a9c5e4490eabd2

  • SHA512

    c2a6f73cb33d57e919695144f55e8675cb44b01ea18ecf2fcb2f2ec4a0c0022615397a9d40350fad99d8b4275afcdc16ad0d5ddbd9db57b8824bff7a5b7526cb

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

https://dipl.site/Content/2022-23/01/03/

Targets

    • Target

      WhatsApp_Image_2024-05-06.lnk

    • Size

      1KB

    • MD5

      4dfdacf33db6ae0341b4d0e65aa3d755

    • SHA1

      ec0d21c64a55b45182fc9aedd3adcecf05ed492f

    • SHA256

      683c61f8dda90ea3b1e76f2ff5ad78dc03ebe3827d56536988a9c5e4490eabd2

    • SHA512

      c2a6f73cb33d57e919695144f55e8675cb44b01ea18ecf2fcb2f2ec4a0c0022615397a9d40350fad99d8b4275afcdc16ad0d5ddbd9db57b8824bff7a5b7526cb

    Score
    10/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks