General

  • Target

    17952d5e57248ec6214170eb335e2b4a9039823d3433a66aee3352ffca990e80N

  • Size

    1.2MB

  • Sample

    241107-lsnq6ssnhp

  • MD5

    34d850caf862d761d89d5b026c8cfa20

  • SHA1

    3c972ebbc6880e3cc53a9c0bb697ea5ab2453e30

  • SHA256

    17952d5e57248ec6214170eb335e2b4a9039823d3433a66aee3352ffca990e80

  • SHA512

    2cad240d3175fe95e03aca9d8d902a4ce8cb3c947884543f251892d9792519f75eec66547318e50e664601e9ded9c0e585fdb28bbb411ac8972b0ffc0b013740

  • SSDEEP

    24576:GNoEYOvOSDvI5EJqbJSVEePoHDHZQdJY9WaChFeN5OFBy+p:GNmwOUhJqbJS+eQHjZ1YhqUyK

Malware Config

Targets

    • Target

      17952d5e57248ec6214170eb335e2b4a9039823d3433a66aee3352ffca990e80N

    • Size

      1.2MB

    • MD5

      34d850caf862d761d89d5b026c8cfa20

    • SHA1

      3c972ebbc6880e3cc53a9c0bb697ea5ab2453e30

    • SHA256

      17952d5e57248ec6214170eb335e2b4a9039823d3433a66aee3352ffca990e80

    • SHA512

      2cad240d3175fe95e03aca9d8d902a4ce8cb3c947884543f251892d9792519f75eec66547318e50e664601e9ded9c0e585fdb28bbb411ac8972b0ffc0b013740

    • SSDEEP

      24576:GNoEYOvOSDvI5EJqbJSVEePoHDHZQdJY9WaChFeN5OFBy+p:GNmwOUhJqbJS+eQHjZ1YhqUyK

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks