General

  • Target

    b480fec95b84980e88e0e5958873b7194029ffbaa78369cfe5c0e4d64849fb32.zip

  • Size

    7.8MB

  • Sample

    250403-ce3thaxsds

  • MD5

    57dfbbb2a6afbbc61c474a6a0c273700

  • SHA1

    42542019d467817cd98da6271ca35ce4ae2f30cb

  • SHA256

    c9981ab9232d11f408fbd87b1af6bb41f79c40010b779be77a17cac6693d321c

  • SHA512

    8dc863094bb9010f0dd4435a397b6d5070e1de4326017f96ad45afc909f4341c435c128a61f698fbb3d53e8adf8875a2dfdf4a7d454390cc0f4652457f8992e7

  • SSDEEP

    196608:zA0WuTju8ymBA5Og3cPGckUFijfevgMRRiRhQQ5N6:zvWuO8PSr3cO9xGIMviTQQ5N6

Score
10/10

Malware Config

Targets

    • Target

      b480fec95b84980e88e0e5958873b7194029ffbaa78369cfe5c0e4d64849fb32

    • Size

      8.2MB

    • MD5

      6d4274f7b0ce245e587a5268f13dfbe4

    • SHA1

      55b02e546d95f1d2ef84c1bbc2977813cfccfcce

    • SHA256

      b480fec95b84980e88e0e5958873b7194029ffbaa78369cfe5c0e4d64849fb32

    • SHA512

      f991f6beb57b55309466b8c180bce3c21c89c570ba427e57e081fb68c6c81fac10f601c8cfcf57300964888aa577c88ee07e6a4377aa89e20289436654636169

    • SSDEEP

      196608:0qwjvM1FtMreLc6Yn2K0DwrgZebEblG+uj7Y2B2cfyDm+Ab+g:EEFSrQNYnKDSXbEblG+uj3yDm+Y+g

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks