General

  • Target

    e1e66ffc4a8c75d4e7cc7d4b50535588e50ad613bc8f3cb0fe4d2bcacc59cd9dN

  • Size

    164KB

  • Sample

    241110-b5248awhjq

  • MD5

    9b80e0c8bdd2ea10286279dd8adca020

  • SHA1

    a5bdd7c5c9290f83080126c2c5932f323f2c8947

  • SHA256

    e1e66ffc4a8c75d4e7cc7d4b50535588e50ad613bc8f3cb0fe4d2bcacc59cd9d

  • SHA512

    523a7f38beff77e78847b2db455c3b22ba0670302925f63caf74d4d9dbbb7e66e0ba813b348430b58fac34ed4fcf432e65a5036f1ce7858fb6c7f17866730944

  • SSDEEP

    3072:H7ylXXNmoyNgijo9uDpKiXZ7QlSDp8vXYS:bylXXNmoyqijoq4yOSy/YS

Score
7/10

Malware Config

Targets

    • Target

      e1e66ffc4a8c75d4e7cc7d4b50535588e50ad613bc8f3cb0fe4d2bcacc59cd9dN

    • Size

      164KB

    • MD5

      9b80e0c8bdd2ea10286279dd8adca020

    • SHA1

      a5bdd7c5c9290f83080126c2c5932f323f2c8947

    • SHA256

      e1e66ffc4a8c75d4e7cc7d4b50535588e50ad613bc8f3cb0fe4d2bcacc59cd9d

    • SHA512

      523a7f38beff77e78847b2db455c3b22ba0670302925f63caf74d4d9dbbb7e66e0ba813b348430b58fac34ed4fcf432e65a5036f1ce7858fb6c7f17866730944

    • SSDEEP

      3072:H7ylXXNmoyNgijo9uDpKiXZ7QlSDp8vXYS:bylXXNmoyqijoq4yOSy/YS

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks