General

  • Target

    bcab659060920640b3010ab4ed4e6e8a699d4d0a45e026f513302367315797aaN

  • Size

    72KB

  • Sample

    241104-bql5fszfrr

  • MD5

    c6f40108f737a0e448c5928b937e0730

  • SHA1

    3ceafd061a31c6523c4db4e6b0031133a418420b

  • SHA256

    bcab659060920640b3010ab4ed4e6e8a699d4d0a45e026f513302367315797aa

  • SHA512

    75a75dae81342c59d9c53eafcc01f448309d9b2c4211f799d3d475e99c29588f0004c7289a8e5c140d852383c41115d3d5745cf65a7dc7a95b2b82961945e2c8

  • SSDEEP

    1536:/LXB65939tY6HBg4sXJKxIjVlWmBX6CCtl8S8qcy4rLnVHCE:/Lk395hYXJK+KpCC/8jy4fnFF

Malware Config

Targets

    • Target

      bcab659060920640b3010ab4ed4e6e8a699d4d0a45e026f513302367315797aaN

    • Size

      72KB

    • MD5

      c6f40108f737a0e448c5928b937e0730

    • SHA1

      3ceafd061a31c6523c4db4e6b0031133a418420b

    • SHA256

      bcab659060920640b3010ab4ed4e6e8a699d4d0a45e026f513302367315797aa

    • SHA512

      75a75dae81342c59d9c53eafcc01f448309d9b2c4211f799d3d475e99c29588f0004c7289a8e5c140d852383c41115d3d5745cf65a7dc7a95b2b82961945e2c8

    • SSDEEP

      1536:/LXB65939tY6HBg4sXJKxIjVlWmBX6CCtl8S8qcy4rLnVHCE:/Lk395hYXJK+KpCC/8jy4fnFF

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks