General

  • Target

    bda35ce31a90542dac234b4a57a057e87af13fac84c41808b351552e676c351b

  • Size

    55KB

  • Sample

    241031-e2nzza1pdm

  • MD5

    2d54ff543c33342641b636d0ad93b32b

  • SHA1

    8c469b687a6ea57c560873c8afefac0c6fcdd54d

  • SHA256

    bda35ce31a90542dac234b4a57a057e87af13fac84c41808b351552e676c351b

  • SHA512

    36621147818e4f70fcf1131ed05e3f5cce8d0daa2d05844c83d1776a57da1f554d739a6ec39bd9e602a31c36cb70d64be88cdb3da77766beb1ef9e05bbc017eb

  • SSDEEP

    1536:RhBZ1b9c409y1G1i35Bo01i/gcU8eVTOK/YqjYYamvbtb:BZl2zoxV1i/NU82OMYcYYamv5b

Malware Config

Targets

    • Target

      bda35ce31a90542dac234b4a57a057e87af13fac84c41808b351552e676c351b

    • Size

      55KB

    • MD5

      2d54ff543c33342641b636d0ad93b32b

    • SHA1

      8c469b687a6ea57c560873c8afefac0c6fcdd54d

    • SHA256

      bda35ce31a90542dac234b4a57a057e87af13fac84c41808b351552e676c351b

    • SHA512

      36621147818e4f70fcf1131ed05e3f5cce8d0daa2d05844c83d1776a57da1f554d739a6ec39bd9e602a31c36cb70d64be88cdb3da77766beb1ef9e05bbc017eb

    • SSDEEP

      1536:RhBZ1b9c409y1G1i35Bo01i/gcU8eVTOK/YqjYYamvbtb:BZl2zoxV1i/NU82OMYcYYamv5b

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    • Hide Artifacts: Hidden Files and Directories

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks