General

  • Target

    ec8d543ac8ed51bc947cbc4b9933511c7f4daa080d34104aeba0b31d21b30442

  • Size

    64KB

  • Sample

    241031-hk7mja1ldv

  • MD5

    b4a374fe1a267d284fe828bfb38f776b

  • SHA1

    9abc13a3edd1346418ed5e82d84e63b28553942c

  • SHA256

    ec8d543ac8ed51bc947cbc4b9933511c7f4daa080d34104aeba0b31d21b30442

  • SHA512

    8f7384c7ee324d85f370b30c7ce1fe15a9e94d23589885d368f9ff5c6cca06b7d4bfdfccba8bca28d1821127605287cffc70869ce6e09a696ae4a763a23bb19a

  • SSDEEP

    768:MDcpEBMLfQcubV5wGE96YyXDTLdEBBBB4n:MDcfLfIbtEbyXfZF

Malware Config

Targets

    • Target

      ec8d543ac8ed51bc947cbc4b9933511c7f4daa080d34104aeba0b31d21b30442

    • Size

      64KB

    • MD5

      b4a374fe1a267d284fe828bfb38f776b

    • SHA1

      9abc13a3edd1346418ed5e82d84e63b28553942c

    • SHA256

      ec8d543ac8ed51bc947cbc4b9933511c7f4daa080d34104aeba0b31d21b30442

    • SHA512

      8f7384c7ee324d85f370b30c7ce1fe15a9e94d23589885d368f9ff5c6cca06b7d4bfdfccba8bca28d1821127605287cffc70869ce6e09a696ae4a763a23bb19a

    • SSDEEP

      768:MDcpEBMLfQcubV5wGE96YyXDTLdEBBBB4n:MDcfLfIbtEbyXfZF

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks