General

  • Target

    2024-11-10_ccd39e20397244d69dd3d19952e6ab16_mafia_nionspy

  • Size

    280KB

  • Sample

    241110-b19nhazkbr

  • MD5

    ccd39e20397244d69dd3d19952e6ab16

  • SHA1

    eaf3200a4894e32b0ab9a10f9dfaa98a8aef8db7

  • SHA256

    977cb68106c712ed4477e24273341f0d56bca1b3bb45b1563d2d6dde58bf0651

  • SHA512

    826c018c64825a3c706753eca19b9e8b4080a9c1d0c0d85c142d3c06cbd369e8847d22cd75780cba7b217b4b75bda6e98bdfc511e9d04daf73af1c43cb9a545d

  • SSDEEP

    6144:mTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:mTBPFV0RyWl3h2E+7pl

Score
7/10

Malware Config

Targets

    • Target

      2024-11-10_ccd39e20397244d69dd3d19952e6ab16_mafia_nionspy

    • Size

      280KB

    • MD5

      ccd39e20397244d69dd3d19952e6ab16

    • SHA1

      eaf3200a4894e32b0ab9a10f9dfaa98a8aef8db7

    • SHA256

      977cb68106c712ed4477e24273341f0d56bca1b3bb45b1563d2d6dde58bf0651

    • SHA512

      826c018c64825a3c706753eca19b9e8b4080a9c1d0c0d85c142d3c06cbd369e8847d22cd75780cba7b217b4b75bda6e98bdfc511e9d04daf73af1c43cb9a545d

    • SSDEEP

      6144:mTz+WrPFZvTXb4RyW42vFlOloh2E+7pYUozDK:mTBPFV0RyWl3h2E+7pl

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks