General

  • Target

    working ahhh.exe

  • Size

    1.6MB

  • Sample

    240914-wpw89axelq

  • MD5

    02f0c3da33d2a46daf36bc2b75eb0191

  • SHA1

    c4922a7d3ec96de43e18547e765c9c0f903def84

  • SHA256

    4813139020fdd02e57bca3552018108ae922248998e7274bb0eb989393d4c7f8

  • SHA512

    e1d9176eb21b9c51f04bb627e6475bd68e92e217eb7ab727677c28b76ccf8d5535ad7a3a630163228e1b31adb87f3a2c9d29e9cbf8c527cf3f3a75e6ffe7e4cd

  • SSDEEP

    24576:jyi2Q9NXw2/wPOjdGxY2rJxkqjVnlqud+/2P+A+ZecdyFoBkkAqmZywxh:ZTq24GjdGSiJxkqXfd+/9AqYanCLx

Malware Config

Targets

    • Target

      working ahhh.exe

    • Size

      1.6MB

    • MD5

      02f0c3da33d2a46daf36bc2b75eb0191

    • SHA1

      c4922a7d3ec96de43e18547e765c9c0f903def84

    • SHA256

      4813139020fdd02e57bca3552018108ae922248998e7274bb0eb989393d4c7f8

    • SHA512

      e1d9176eb21b9c51f04bb627e6475bd68e92e217eb7ab727677c28b76ccf8d5535ad7a3a630163228e1b31adb87f3a2c9d29e9cbf8c527cf3f3a75e6ffe7e4cd

    • SSDEEP

      24576:jyi2Q9NXw2/wPOjdGxY2rJxkqjVnlqud+/2P+A+ZecdyFoBkkAqmZywxh:ZTq24GjdGSiJxkqXfd+/9AqYanCLx

    • Stealerium

      An open source info stealer written in C# first seen in May 2022.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks