General

  • Target

    7b655120dd92ea4fcc951abf784fefd07f8337dcf2b1a54528cce4aa69319205

  • Size

    196KB

  • Sample

    241031-h46jksvlck

  • MD5

    2f1ea33d3eafde256a02c4f36dbf3a6f

  • SHA1

    7af739dc8ee51a2af0776f868b80a16b55e47bf5

  • SHA256

    7b655120dd92ea4fcc951abf784fefd07f8337dcf2b1a54528cce4aa69319205

  • SHA512

    820bec6716717c0c5830d2cfdf204fa51462c400129ff4329b3e5c49e6e106400147ded7967922a89111e4c903f92faa42b621088491bb0f86070b32ee64a0a0

  • SSDEEP

    6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOc:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX1

Malware Config

Targets

    • Target

      7b655120dd92ea4fcc951abf784fefd07f8337dcf2b1a54528cce4aa69319205

    • Size

      196KB

    • MD5

      2f1ea33d3eafde256a02c4f36dbf3a6f

    • SHA1

      7af739dc8ee51a2af0776f868b80a16b55e47bf5

    • SHA256

      7b655120dd92ea4fcc951abf784fefd07f8337dcf2b1a54528cce4aa69319205

    • SHA512

      820bec6716717c0c5830d2cfdf204fa51462c400129ff4329b3e5c49e6e106400147ded7967922a89111e4c903f92faa42b621088491bb0f86070b32ee64a0a0

    • SSDEEP

      6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOc:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX1

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks