General

  • Target

    27f58b19a6e06c154c85afa2657ecdcb3d3c98dda00a01c6035b7b93a6aaa4d1N

  • Size

    74KB

  • Sample

    241031-hrwhvatbll

  • MD5

    93714af8b2ad3d59f7ec2731f781c450

  • SHA1

    5053a4177b9372a363b547961327f546afc5ae96

  • SHA256

    27f58b19a6e06c154c85afa2657ecdcb3d3c98dda00a01c6035b7b93a6aaa4d1

  • SHA512

    5e0933f1678b9feb4a0f024bb1b0c1d47062650452fe2ff3aeb13f4e61857aee8e27a58f40a936c64cf7de241af97f48ad2ac357064983e95b050c2dd66b4607

  • SSDEEP

    768:yMiLNeNwIDIPptuG/UGNRUxQPog41rsxharN8MdC2W1kiHfcc0FjGnfL:4LNcwYIPPnGxngKsxNMdC2wWJGT

Malware Config

Targets

    • Target

      27f58b19a6e06c154c85afa2657ecdcb3d3c98dda00a01c6035b7b93a6aaa4d1N

    • Size

      74KB

    • MD5

      93714af8b2ad3d59f7ec2731f781c450

    • SHA1

      5053a4177b9372a363b547961327f546afc5ae96

    • SHA256

      27f58b19a6e06c154c85afa2657ecdcb3d3c98dda00a01c6035b7b93a6aaa4d1

    • SHA512

      5e0933f1678b9feb4a0f024bb1b0c1d47062650452fe2ff3aeb13f4e61857aee8e27a58f40a936c64cf7de241af97f48ad2ac357064983e95b050c2dd66b4607

    • SSDEEP

      768:yMiLNeNwIDIPptuG/UGNRUxQPog41rsxharN8MdC2W1kiHfcc0FjGnfL:4LNcwYIPPnGxngKsxNMdC2wWJGT

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks