General

  • Target

    e785e921610b40efca5161e0b3f3339d0a3130fe3626032d61fe52f856b311c2N

  • Size

    36KB

  • Sample

    241030-tan8zsxrep

  • MD5

    437fd2efe8660bcba176f3df3f504e80

  • SHA1

    2f56eeddc3acb13eb662213914cb121ec272ae13

  • SHA256

    e785e921610b40efca5161e0b3f3339d0a3130fe3626032d61fe52f856b311c2

  • SHA512

    bda2d619b1cc3da28d72451292a847207c2a264561998ed032fa5c4a2cd8325bd9e4a4306d971709113c73d75a54abd81b1e39bc785ac2df61ef1a2a62046afe

  • SSDEEP

    768:AnoSEjp9Plchfr6TUqnbcuyD7UYK41lll/J0ppppCwwwcooodwwwt111q1YYYU/1:AoSEZWTUUqnouy8YX/vooodwwwt111+P

Malware Config

Targets

    • Target

      e785e921610b40efca5161e0b3f3339d0a3130fe3626032d61fe52f856b311c2N

    • Size

      36KB

    • MD5

      437fd2efe8660bcba176f3df3f504e80

    • SHA1

      2f56eeddc3acb13eb662213914cb121ec272ae13

    • SHA256

      e785e921610b40efca5161e0b3f3339d0a3130fe3626032d61fe52f856b311c2

    • SHA512

      bda2d619b1cc3da28d72451292a847207c2a264561998ed032fa5c4a2cd8325bd9e4a4306d971709113c73d75a54abd81b1e39bc785ac2df61ef1a2a62046afe

    • SSDEEP

      768:AnoSEjp9Plchfr6TUqnbcuyD7UYK41lll/J0ppppCwwwcooodwwwt111q1YYYU/1:AoSEZWTUUqnouy8YX/vooodwwwt111+P

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks