General

  • Target

    f734f3120eb6e6adf2117b9613d353a61be96819a8accdda5b4fd33252b43557N

  • Size

    43KB

  • Sample

    241031-br9bdawemr

  • MD5

    7bbc2493f47989fdbbd12b5d73007860

  • SHA1

    d3e7128198b4245ccd73e332a934adb4029b89e7

  • SHA256

    f734f3120eb6e6adf2117b9613d353a61be96819a8accdda5b4fd33252b43557

  • SHA512

    50f57ecf7f8002cff0cb7c29c500a3d706064325339be31a6c1acccd2e691033aaf89623afcd2e5b3758069774a009646975c131be4cbe8aafecf430e2fb9a46

  • SSDEEP

    768:+NgmxM8y4QzbM4JeSx+7GPKSmPbLrzgozmidiJz37oY7:+CmxMSQWEuQoLIYI

Malware Config

Targets

    • Target

      f734f3120eb6e6adf2117b9613d353a61be96819a8accdda5b4fd33252b43557N

    • Size

      43KB

    • MD5

      7bbc2493f47989fdbbd12b5d73007860

    • SHA1

      d3e7128198b4245ccd73e332a934adb4029b89e7

    • SHA256

      f734f3120eb6e6adf2117b9613d353a61be96819a8accdda5b4fd33252b43557

    • SHA512

      50f57ecf7f8002cff0cb7c29c500a3d706064325339be31a6c1acccd2e691033aaf89623afcd2e5b3758069774a009646975c131be4cbe8aafecf430e2fb9a46

    • SSDEEP

      768:+NgmxM8y4QzbM4JeSx+7GPKSmPbLrzgozmidiJz37oY7:+CmxMSQWEuQoLIYI

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks