General
-
Target
Delta V3.61 b_55490904.exe
-
Size
340KB
-
Sample
240928-y5tt6svcmn
-
MD5
b726cc5078806b50c418921d57f8f797
-
SHA1
0a37e18e10e28c0a68f55811871d9447eaf2bee9
-
SHA256
4ba7ce4ec3c08b39944405e6b3cc707c70573a9c0281a10249f84d135391d8f3
-
SHA512
39454c17d0eaaa1cb4769d436fa68f3d2dac1111265943ced235f770e3badc68992b83b143ec295210c30032fbbd5239a743cdb16936268fbd8c9a6219afc68b
-
SSDEEP
6144:N4MLowReNmdCHDqSD6vs7hQOxFUrPweLe3pyupc5xFA+1TC7HhenAOzDPj+HFuSn:NYWLMHD3D6vChQOxF7yOpyupQbg7HEn6
Malware Config
Targets
-
-
Target
Delta V3.61 b_55490904.exe
-
Size
340KB
-
MD5
b726cc5078806b50c418921d57f8f797
-
SHA1
0a37e18e10e28c0a68f55811871d9447eaf2bee9
-
SHA256
4ba7ce4ec3c08b39944405e6b3cc707c70573a9c0281a10249f84d135391d8f3
-
SHA512
39454c17d0eaaa1cb4769d436fa68f3d2dac1111265943ced235f770e3badc68992b83b143ec295210c30032fbbd5239a743cdb16936268fbd8c9a6219afc68b
-
SSDEEP
6144:N4MLowReNmdCHDqSD6vs7hQOxFUrPweLe3pyupc5xFA+1TC7HhenAOzDPj+HFuSn:NYWLMHD3D6vChQOxF7yOpyupQbg7HEn6
Score6/10-
Checks for any installed AV software in registry
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Enumerates processes with tasklist
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1