General

  • Target

    3a19fd486163e03d64d375cc71897e833b9f86a2f3935c8578c277eb6227a49a

  • Size

    960KB

  • Sample

    241109-wlevssyhqa

  • MD5

    2900d9fb03f39b76fbe897f9780add5c

  • SHA1

    3a1390d2e5398d6db00aaa08b969c2e1bd7f3fb8

  • SHA256

    3a19fd486163e03d64d375cc71897e833b9f86a2f3935c8578c277eb6227a49a

  • SHA512

    ee1bb00488ec4de1d2ecb03f5c933ffae79f03a018c20517cee380320607243e72d0197fcdf6cbcd945897bcae5165e94505674838b5ba0f7e143b83f9144746

  • SSDEEP

    12288:T27p5j8DPeuUSFHqLV+JjY4UW61O4RAxDleFbWQCQTFgSYyAzB+Q/uLnK3:T27EDFHqLy826My+QiyGJyAV+muLK3

Score
8/10

Malware Config

Targets

    • Target

      3a19fd486163e03d64d375cc71897e833b9f86a2f3935c8578c277eb6227a49a

    • Size

      960KB

    • MD5

      2900d9fb03f39b76fbe897f9780add5c

    • SHA1

      3a1390d2e5398d6db00aaa08b969c2e1bd7f3fb8

    • SHA256

      3a19fd486163e03d64d375cc71897e833b9f86a2f3935c8578c277eb6227a49a

    • SHA512

      ee1bb00488ec4de1d2ecb03f5c933ffae79f03a018c20517cee380320607243e72d0197fcdf6cbcd945897bcae5165e94505674838b5ba0f7e143b83f9144746

    • SSDEEP

      12288:T27p5j8DPeuUSFHqLV+JjY4UW61O4RAxDleFbWQCQTFgSYyAzB+Q/uLnK3:T27EDFHqLy826My+QiyGJyAV+muLK3

    Score
    8/10
    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks