General

  • Target

    2024-08-22_6f555069e8dc66ebd53d04189b46567a_mafia_nionspy

  • Size

    280KB

  • Sample

    240822-3cjkystamc

  • MD5

    6f555069e8dc66ebd53d04189b46567a

  • SHA1

    092b9711f4dbcbeb38f1de01f4497db495c1fd3f

  • SHA256

    028f81d2ab866b944dab9a26e377a8b46230633581ce8a5bb9b182a6b5f6f85f

  • SHA512

    3cdc3fba4176d256bf87fe7e6101c94bde24b1d83cb3aa8ca70d9c685c07462c8b5fd71e83aa5aab277b46452b1047b77da7946d3165edf6d861aef6e8b097a4

  • SSDEEP

    6144:NQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:NQMyfmNFHfnWfhLZVHmOog

Score
7/10

Malware Config

Targets

    • Target

      2024-08-22_6f555069e8dc66ebd53d04189b46567a_mafia_nionspy

    • Size

      280KB

    • MD5

      6f555069e8dc66ebd53d04189b46567a

    • SHA1

      092b9711f4dbcbeb38f1de01f4497db495c1fd3f

    • SHA256

      028f81d2ab866b944dab9a26e377a8b46230633581ce8a5bb9b182a6b5f6f85f

    • SHA512

      3cdc3fba4176d256bf87fe7e6101c94bde24b1d83cb3aa8ca70d9c685c07462c8b5fd71e83aa5aab277b46452b1047b77da7946d3165edf6d861aef6e8b097a4

    • SSDEEP

      6144:NQ+Tyfx4NF67Sbq2nW82X45gc3BaLZVS0mOoC8zbzDie:NQMyfmNFHfnWfhLZVHmOog

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks