69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e | Triage

Submit
Reports

Overview

overview

8

Static

static

69b583a01b...1e.exe

windows7_x64

8

69b583a01b...1e.exe

windows10_x64

8

Sharing

General

Target

69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e
Size

761KB
Sample

210508-dl3l79l1r2
MD5

7469f362dfdd82fc4ff549cee42ba76c
SHA1

fdc33fd83726628b2993c616001a7baf9f84f4d4
SHA256

69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e
SHA512

3629c45d4f98ae45bf0e19485d38908d9f9648050dbd993c910315a97ca12c119f83d1ce0036e694de4e2bc8c3005165909dbc25befa8f8ce9331ba7bad185b7

Score

8^/10

macro persistence

Static task

static1

Behavioral task

behavioral1

Sample

69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e.exe

Resource

win7v20210408

macro persistence

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e.exe

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e
- Size
  
  761KB
- MD5
  
  7469f362dfdd82fc4ff549cee42ba76c
- SHA1
  
  fdc33fd83726628b2993c616001a7baf9f84f4d4
- SHA256
  
  69b583a01b99098a447c73edbe82bb2634980f8aecb57158037def8ba027a61e
- SHA512
  
  3629c45d4f98ae45bf0e19485d38908d9f9648050dbd993c910315a97ca12c119f83d1ce0036e694de4e2bc8c3005165909dbc25befa8f8ce9331ba7bad185b7
Score

8^/10

macro persistence
- Executes dropped EXE
- Suspicious Office macro
  Office document equipped with macros.
  macro
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

macropersistence

behavioral2

© 2018-2024

Terms | Privacy