General

  • Target

    7471e9ab7f7b3c6e99075c04caf8687bfcf363831f75b4ffbdda64da52e16d75

  • Size

    55KB

  • Sample

    241031-baa29avhpe

  • MD5

    d86246ae8dc8b9fdd1c2851110dcd3ca

  • SHA1

    f3e1e69f33acadbb0700bb03ec22f3923ce742cc

  • SHA256

    7471e9ab7f7b3c6e99075c04caf8687bfcf363831f75b4ffbdda64da52e16d75

  • SHA512

    b27c5bcdb6f9321887f94ec1b0f5fdc7e204d71688861be6bf525c669b2b8ef4f8a4f57703a5ab251a5e41952b4cb7f6a7dfe95c0a0ccf1906f63f78127c4bc7

  • SSDEEP

    1536:thBZ1b9c409y1G1i35Bo01i/gcU8eVTOK/YqjYYamvbtb:1Zl2zoxV1i/NU82OMYcYYamv5b

Malware Config

Targets

    • Target

      7471e9ab7f7b3c6e99075c04caf8687bfcf363831f75b4ffbdda64da52e16d75

    • Size

      55KB

    • MD5

      d86246ae8dc8b9fdd1c2851110dcd3ca

    • SHA1

      f3e1e69f33acadbb0700bb03ec22f3923ce742cc

    • SHA256

      7471e9ab7f7b3c6e99075c04caf8687bfcf363831f75b4ffbdda64da52e16d75

    • SHA512

      b27c5bcdb6f9321887f94ec1b0f5fdc7e204d71688861be6bf525c669b2b8ef4f8a4f57703a5ab251a5e41952b4cb7f6a7dfe95c0a0ccf1906f63f78127c4bc7

    • SSDEEP

      1536:thBZ1b9c409y1G1i35Bo01i/gcU8eVTOK/YqjYYamvbtb:1Zl2zoxV1i/NU82OMYcYYamv5b

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    • Hide Artifacts: Hidden Files and Directories

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks