Resubmissions

12/06/2025, 07:03

250612-hvephahn4w 3

18/05/2025, 21:18

250518-z5zwvsypz9 10

General

  • Target

    tmpz_sckat0

  • Size

    11KB

  • Sample

    250518-z5zwvsypz9

  • MD5

    ff7c2245c65bcb74870c8100c541749b

  • SHA1

    1574049b5c460f4dd43795d3d8ec91b97d43fe33

  • SHA256

    5fdce73c7de030252c002a793b1104b47e400dccca9f541b1a0b14a95d15aeaf

  • SHA512

    bf96ea03b3620a184f7221029c1658282c7ad565a60f6aaf07721d8dc3dcceaeca1b6092635786f3d80d060443bd7c1d2e2ea48e469d4d66596d5874d15481a0

  • SSDEEP

    192:rtDNeM858075ey9B7WmS3Nkq3MkZqbaaHvbtw/unhMmgc:iM8Fb9B7WhN8kZqbaoGmn1g

Score
10/10

Malware Config

Targets

    • Target

      tmpz_sckat0

    • Size

      11KB

    • MD5

      ff7c2245c65bcb74870c8100c541749b

    • SHA1

      1574049b5c460f4dd43795d3d8ec91b97d43fe33

    • SHA256

      5fdce73c7de030252c002a793b1104b47e400dccca9f541b1a0b14a95d15aeaf

    • SHA512

      bf96ea03b3620a184f7221029c1658282c7ad565a60f6aaf07721d8dc3dcceaeca1b6092635786f3d80d060443bd7c1d2e2ea48e469d4d66596d5874d15481a0

    • SSDEEP

      192:rtDNeM858075ey9B7WmS3Nkq3MkZqbaaHvbtw/unhMmgc:iM8Fb9B7WhN8kZqbaoGmn1g

    Score
    10/10
    • Detects Mofksys worm

    • Mofksys

      Mofksys is a worm written in VisualBasic.

    • Mofksys family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v16

Tasks