General
-
Target
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6N
-
Size
1.9MB
-
Sample
241030-tw9f2sxepl
-
MD5
086c8d560aa7f798c0d834cc265ddf00
-
SHA1
9ebd83183e8637de91538d952045a9553a3a6b44
-
SHA256
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6
-
SHA512
35482c690189413d7d1c2d5ee192b572ac40aac1d6badde25e72ee4944c9740d8378eb9eba7610065f9f24fe23216b2244d7cf345c103992c4d4bf5f011601be
-
SSDEEP
49152:BMwEeY//IQhJowy+T1MwEeY//IQhJowy+Tq:CuY/XhMuY/Xho
Static task
static1
Behavioral task
behavioral1
Sample
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6N
-
Size
1.9MB
-
MD5
086c8d560aa7f798c0d834cc265ddf00
-
SHA1
9ebd83183e8637de91538d952045a9553a3a6b44
-
SHA256
52842ee069de015a83bcc14d4469b7a210ed841ec9351c68b80da4e8e61c72b6
-
SHA512
35482c690189413d7d1c2d5ee192b572ac40aac1d6badde25e72ee4944c9740d8378eb9eba7610065f9f24fe23216b2244d7cf345c103992c4d4bf5f011601be
-
SSDEEP
49152:BMwEeY//IQhJowy+T1MwEeY//IQhJowy+Tq:CuY/XhMuY/Xho
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1