General

  • Target

    1eb0722f2b98f3fbda9568174adec2f0593dc6801a790fdea23c2e326fa002d3.exe

  • Size

    66KB

  • Sample

    241113-3z92es1hqr

  • MD5

    5d0111340066b4f54be509e9cd0e671e

  • SHA1

    f8286c849226b0f0b9f0ea6087a96f16e070deba

  • SHA256

    1eb0722f2b98f3fbda9568174adec2f0593dc6801a790fdea23c2e326fa002d3

  • SHA512

    6adb14c210824afcd948a9250df788376cd29a3fb58cbc2c21c56dee02da856c370e8821adf2b551a2372eaceb25b26a74f664ac34420761440c7f589261756a

  • SSDEEP

    768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyXmP:Zr3Z5IfQIR81ad5yXmP

Malware Config

Targets

    • Target

      1eb0722f2b98f3fbda9568174adec2f0593dc6801a790fdea23c2e326fa002d3.exe

    • Size

      66KB

    • MD5

      5d0111340066b4f54be509e9cd0e671e

    • SHA1

      f8286c849226b0f0b9f0ea6087a96f16e070deba

    • SHA256

      1eb0722f2b98f3fbda9568174adec2f0593dc6801a790fdea23c2e326fa002d3

    • SHA512

      6adb14c210824afcd948a9250df788376cd29a3fb58cbc2c21c56dee02da856c370e8821adf2b551a2372eaceb25b26a74f664ac34420761440c7f589261756a

    • SSDEEP

      768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyXmP:Zr3Z5IfQIR81ad5yXmP

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks