General

  • Target

    6ce9f5cee66fe1bd189cbee30975dfecba526e7a1c3b605a04561bb17ddfdb4a

  • Size

    3.4MB

  • Sample

    240622-3ek7katdlj

  • MD5

    bb4c2401383c1cebe0223d2201a33c59

  • SHA1

    32ba7baa282d04844a25291e7078de70f799a2df

  • SHA256

    6ce9f5cee66fe1bd189cbee30975dfecba526e7a1c3b605a04561bb17ddfdb4a

  • SHA512

    018b95f9f469d5e9d16e89b8ade4943d1330b5b7b3135a3a848d436475edbde601ba7ae427f0c09e4acc601a601b732e7762151ce9524a6b81f6d67a1cb9a76f

  • SSDEEP

    49152:njynt8pQypCY45ZgFU11fBWZDY6CC9HV6uAnRUYSg8aW6kZHyZWApfvOPJTdRxbc:jynycZgwfcZDY6CPuAnRU88j68PVS

Score
8/10

Malware Config

Targets

    • Target

      6ce9f5cee66fe1bd189cbee30975dfecba526e7a1c3b605a04561bb17ddfdb4a

    • Size

      3.4MB

    • MD5

      bb4c2401383c1cebe0223d2201a33c59

    • SHA1

      32ba7baa282d04844a25291e7078de70f799a2df

    • SHA256

      6ce9f5cee66fe1bd189cbee30975dfecba526e7a1c3b605a04561bb17ddfdb4a

    • SHA512

      018b95f9f469d5e9d16e89b8ade4943d1330b5b7b3135a3a848d436475edbde601ba7ae427f0c09e4acc601a601b732e7762151ce9524a6b81f6d67a1cb9a76f

    • SSDEEP

      49152:njynt8pQypCY45ZgFU11fBWZDY6CC9HV6uAnRUYSg8aW6kZHyZWApfvOPJTdRxbc:jynycZgwfcZDY6CPuAnRU88j68PVS

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks