General

  • Target

    http://infochanelpan.com/LkgNKS

  • Sample

    250127-zllj5avmdx

Score
10/10

Malware Config

Extracted

Language
hta
Source
URLs
hta.dropper

https://infochanelpan.com/Capcha.html

Extracted

Language
ps1
Deobfuscated
URLs
ps1.dropper

http://176.113.115.225/a.jpg

Targets

    • Target

      http://infochanelpan.com/LkgNKS

    Score
    10/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks