General

  • Target

    6ab7e2c1803f6e7536e29e1575937605dc47be5e70e76180bf224ad1ccf3abac

  • Size

    40KB

  • Sample

    241111-vtzphavrcm

  • MD5

    bfd0047ccacb882b0362d31163e84655

  • SHA1

    a0a0ee23e626c03e2ef1ed38762bbbd66b97dad9

  • SHA256

    6ab7e2c1803f6e7536e29e1575937605dc47be5e70e76180bf224ad1ccf3abac

  • SHA512

    c692d91339bd55af706b2824f3387b6fd4f357d98c4e9633078e4127befc82516f4ff9b183b4cce12b9aa0b7053a99630e68d1c7466ebf0db525b35d6d0e5387

  • SSDEEP

    768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgA9CBn9kC+xbPcfmBqGOtwvcVocl0:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dV

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://jimlowry.com/9tag/Mv2ZYY61NBOf8/

xlm40.dropper

http://stainedglassexpress.com/classes/veV/

xlm40.dropper

https://n-process.jp/base/HPH/

xlm40.dropper

http://www.4-hzim.org.zw/language/anCpC49vTB4/

xlm40.dropper

http://salledemode.com/tgroup.ge/6USqthYYyIPw4V/

xlm40.dropper

http://poiterdesign.eu/huur/nc/

Targets

    • Target

      6ab7e2c1803f6e7536e29e1575937605dc47be5e70e76180bf224ad1ccf3abac

    • Size

      40KB

    • MD5

      bfd0047ccacb882b0362d31163e84655

    • SHA1

      a0a0ee23e626c03e2ef1ed38762bbbd66b97dad9

    • SHA256

      6ab7e2c1803f6e7536e29e1575937605dc47be5e70e76180bf224ad1ccf3abac

    • SHA512

      c692d91339bd55af706b2824f3387b6fd4f357d98c4e9633078e4127befc82516f4ff9b183b4cce12b9aa0b7053a99630e68d1c7466ebf0db525b35d6d0e5387

    • SSDEEP

      768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgA9CBn9kC+xbPcfmBqGOtwvcVocl0:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dV

    Score
    10/10

MITRE ATT&CK Enterprise v15

Tasks