General

  • Target

    2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475

  • Size

    772KB

  • Sample

    250204-zm1qfatkeq

  • MD5

    11efce84e0a22a7cf2cc37e4d70b9d12

  • SHA1

    fdf14b95fe44f020456008604cd31536e423b72b

  • SHA256

    2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475

  • SHA512

    a3ff129fc550c5bc126984d14f0c7cbea78b466636be8608004a30a22d5d179d2e52301015b3e7d9df6fe3455fa7c27fc863e927f1fda4e00b90bee7482c8c15

  • SSDEEP

    12288:gmhjJdUlzn3DSudvsh8Awf3XFaZmBITVJPtSrE37yG2LmxCiZ:Xh1alj3DSudvGM3MXTVhtSQWGtx3Z

Score
7/10

Malware Config

Targets

    • Target

      2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475

    • Size

      772KB

    • MD5

      11efce84e0a22a7cf2cc37e4d70b9d12

    • SHA1

      fdf14b95fe44f020456008604cd31536e423b72b

    • SHA256

      2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475

    • SHA512

      a3ff129fc550c5bc126984d14f0c7cbea78b466636be8608004a30a22d5d179d2e52301015b3e7d9df6fe3455fa7c27fc863e927f1fda4e00b90bee7482c8c15

    • SSDEEP

      12288:gmhjJdUlzn3DSudvsh8Awf3XFaZmBITVJPtSrE37yG2LmxCiZ:Xh1alj3DSudvGM3MXTVhtSQWGtx3Z

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Network Service Discovery

      Attempt to gather information on host's network.

    • Network Share Discovery

      Attempt to gather information on host network.

    • Drops file in System32 directory

    • Enumerates processes with tasklist

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks