General

  • Target

    cf4f5f91534f1710b54131ebf57f12ea9d2ff6721a23caa70c6074ab4e8cb656N

  • Size

    74KB

  • Sample

    241030-n3traatqhk

  • MD5

    e7a2a41e82d4cb8d9d2d21946cba4ed0

  • SHA1

    1be7673fac50692e7c2c1ddef58a3650770fd521

  • SHA256

    cf4f5f91534f1710b54131ebf57f12ea9d2ff6721a23caa70c6074ab4e8cb656

  • SHA512

    dcca38fe2b3be5a74142042de93630b798a9973c1a818b54d242f2cd3f565ecee2ea6e81a61e3894c13e66b4e3ec1daaf9fcb8c814dcd9dbe12a2b3c9e49ef9c

  • SSDEEP

    768:bDcpEBlLfQcubgEp1Ayk96XyXuPdtldE9aHNWnnnl000e999vddddIyyyO1v:bDcWLfIbgEp10gyXOdtnTHNWnnn65

Malware Config

Targets

    • Target

      cf4f5f91534f1710b54131ebf57f12ea9d2ff6721a23caa70c6074ab4e8cb656N

    • Size

      74KB

    • MD5

      e7a2a41e82d4cb8d9d2d21946cba4ed0

    • SHA1

      1be7673fac50692e7c2c1ddef58a3650770fd521

    • SHA256

      cf4f5f91534f1710b54131ebf57f12ea9d2ff6721a23caa70c6074ab4e8cb656

    • SHA512

      dcca38fe2b3be5a74142042de93630b798a9973c1a818b54d242f2cd3f565ecee2ea6e81a61e3894c13e66b4e3ec1daaf9fcb8c814dcd9dbe12a2b3c9e49ef9c

    • SSDEEP

      768:bDcpEBlLfQcubgEp1Ayk96XyXuPdtldE9aHNWnnnl000e999vddddIyyyO1v:bDcWLfIbgEp10gyXOdtnTHNWnnn65

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks