General

  • Target

    2a75563ea454aa263d580f957e9891cdf218a571843ffcde0f5d65afaae7552dN

  • Size

    1.7MB

  • Sample

    241110-bja4lswepd

  • MD5

    cb7b56f2167352d7de37baa682bc1220

  • SHA1

    52553b7fefdc8c451727b7cb28734e42484b66b2

  • SHA256

    2a75563ea454aa263d580f957e9891cdf218a571843ffcde0f5d65afaae7552d

  • SHA512

    5a438abd516a8656e4bc37bdf08055e9f1527810d8ccec75e0030d11ae22b6f795578973442a4b77023aea2f3cf12800cef23ed42c2d3bc580afbbe38650b325

  • SSDEEP

    24576:OXdVtTj2i64T+jdxQCfgOFD3WSwd2QtBBw6xxhVxQtmibjOhZaiRu/4oMaop0UNn:mbTChxKCnFnQXBbrtgb/iQvu0UHOd7q

Malware Config

Targets

    • Target

      2a75563ea454aa263d580f957e9891cdf218a571843ffcde0f5d65afaae7552dN

    • Size

      1.7MB

    • MD5

      cb7b56f2167352d7de37baa682bc1220

    • SHA1

      52553b7fefdc8c451727b7cb28734e42484b66b2

    • SHA256

      2a75563ea454aa263d580f957e9891cdf218a571843ffcde0f5d65afaae7552d

    • SHA512

      5a438abd516a8656e4bc37bdf08055e9f1527810d8ccec75e0030d11ae22b6f795578973442a4b77023aea2f3cf12800cef23ed42c2d3bc580afbbe38650b325

    • SSDEEP

      24576:OXdVtTj2i64T+jdxQCfgOFD3WSwd2QtBBw6xxhVxQtmibjOhZaiRu/4oMaop0UNn:mbTChxKCnFnQXBbrtgb/iQvu0UHOd7q

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks