General

  • Target

    SigmaHacks.exe

  • Size

    6.1MB

  • Sample

    240626-klp5zswcjh

  • MD5

    5d5b027a205f7914b26f9eef7bbce415

  • SHA1

    0bbdd505b9491659e97ac683eaf21454e2ed3e11

  • SHA256

    507796e4d1229ac142af72abed8e5355f61f4c633a2d6dc73203b3674925e8ee

  • SHA512

    0cc1a8eb144490469cf0c4223b7bb808b637cf0122bb9237cc35604a7858c5228a3d046a1c8451a6471079208feb1c787b53328bbecf1a2edb963ff85948eea4

  • SSDEEP

    196608:rxKcv8S8DdQmRm8Qnf2ODjMnGydS8wOPp:NFlAdQdF3MnG38wOPp

Score
7/10

Malware Config

Targets

    • Target

      SigmaHacks.exe

    • Size

      6.1MB

    • MD5

      5d5b027a205f7914b26f9eef7bbce415

    • SHA1

      0bbdd505b9491659e97ac683eaf21454e2ed3e11

    • SHA256

      507796e4d1229ac142af72abed8e5355f61f4c633a2d6dc73203b3674925e8ee

    • SHA512

      0cc1a8eb144490469cf0c4223b7bb808b637cf0122bb9237cc35604a7858c5228a3d046a1c8451a6471079208feb1c787b53328bbecf1a2edb963ff85948eea4

    • SSDEEP

      196608:rxKcv8S8DdQmRm8Qnf2ODjMnGydS8wOPp:NFlAdQdF3MnG38wOPp

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks