General
-
Target
ec812cf885aaea23c6411582eae68df54290421f64e3df228f12287fb4d8cff5
-
Size
37KB
-
Sample
240928-dxmexaxbkf
-
MD5
83419475892fa6860a960c0633449e6d
-
SHA1
ce9d36dc77c13a04f66e576da7f8f5ee26884acf
-
SHA256
ec812cf885aaea23c6411582eae68df54290421f64e3df228f12287fb4d8cff5
-
SHA512
8c5f9840519cacc08742be9178772f3957a8906660d6d8cfdac07a4a319187608a26f8ce40f0317235e18bc70e06c990cf3e21636bcdf64086c8c8fcfd8b4fcd
-
SSDEEP
768:+8kr2D6AKlLO+SNhBgCHDck4MV0ggv8KoETBB9D3xvjHhx4eC7Xj8Qc16S:x/6A0q5HDR4oWBx3xrBx41z8Qc0S
Malware Config
Targets
-
-
Target
ec812cf885aaea23c6411582eae68df54290421f64e3df228f12287fb4d8cff5
-
Size
37KB
-
MD5
83419475892fa6860a960c0633449e6d
-
SHA1
ce9d36dc77c13a04f66e576da7f8f5ee26884acf
-
SHA256
ec812cf885aaea23c6411582eae68df54290421f64e3df228f12287fb4d8cff5
-
SHA512
8c5f9840519cacc08742be9178772f3957a8906660d6d8cfdac07a4a319187608a26f8ce40f0317235e18bc70e06c990cf3e21636bcdf64086c8c8fcfd8b4fcd
-
SSDEEP
768:+8kr2D6AKlLO+SNhBgCHDck4MV0ggv8KoETBB9D3xvjHhx4eC7Xj8Qc16S:x/6A0q5HDR4oWBx3xrBx41z8Qc0S
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Impair Defenses: Safe Mode Boot
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Impair Defenses
1Safe Mode Boot
1Subvert Trust Controls
1SIP and Trust Provider Hijacking
1