General

  • Target

    2024-06-13_1ac4bdff94046f98ab7c17cbb96ea98b_avoslocker_cobalt-strike

  • Size

    495KB

  • Sample

    240613-fbxpvsyarl

  • MD5

    1ac4bdff94046f98ab7c17cbb96ea98b

  • SHA1

    7a451661d4bf1c4f8847c6fb7be6be19e33ed1ab

  • SHA256

    1f69ad54f28e4f9054e17e4670f244464b013008f71ad3aa145593d1770926ad

  • SHA512

    5795b73a54830f2ed7824cbefd6bb8ce41e072271a4ecf66fd88190708215cc5ca2c506c482db782c847ba51b196bae38446492874411a3210d949396bde2605

  • SSDEEP

    6144:87WQ0j4ltziolIGlnE2deW3rlBu0R+J5JlLgPYfq8ZF02IlLZDj0nXes2I:ci4lZiop3fu0R+J5JlLgPbDj0nF2I

Score
6/10

Malware Config

Targets

    • Target

      2024-06-13_1ac4bdff94046f98ab7c17cbb96ea98b_avoslocker_cobalt-strike

    • Size

      495KB

    • MD5

      1ac4bdff94046f98ab7c17cbb96ea98b

    • SHA1

      7a451661d4bf1c4f8847c6fb7be6be19e33ed1ab

    • SHA256

      1f69ad54f28e4f9054e17e4670f244464b013008f71ad3aa145593d1770926ad

    • SHA512

      5795b73a54830f2ed7824cbefd6bb8ce41e072271a4ecf66fd88190708215cc5ca2c506c482db782c847ba51b196bae38446492874411a3210d949396bde2605

    • SSDEEP

      6144:87WQ0j4ltziolIGlnE2deW3rlBu0R+J5JlLgPYfq8ZF02IlLZDj0nXes2I:ci4lZiop3fu0R+J5JlLgPbDj0nF2I

    Score
    6/10
    • Checks whether UAC is enabled

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks