Resubmissions

07-01-2025 02:15

250107-cptnks1pap 8

12-08-2024 18:44

240812-xdfb2aydlb 8

12-08-2024 14:42

240812-r3eh5szekf 8

12-08-2024 14:20

240812-rnv8cavcql 8

12-08-2024 14:14

240812-rjzd7syeqe 8

General

  • Target

    https://github.com/RattlesHyper/TrafficerMC/releases/download/v3.1/TrafficerMC-3.1-windows-x64.exe

  • Sample

    240812-r3eh5szekf

Malware Config

Targets

    • Target

      https://github.com/RattlesHyper/TrafficerMC/releases/download/v3.1/TrafficerMC-3.1-windows-x64.exe

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Detected potential entity reuse from brand microsoft.

MITRE ATT&CK Enterprise v15

Tasks