General
-
Target
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9
-
Size
3.4MB
-
Sample
220503-cq142sfhe6
-
MD5
8d1727fd18ac8dd4a4b7ba7b44ec8df7
-
SHA1
683d961eff3e27a4bcc175ac0da5b3f9dca8127c
-
SHA256
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9
-
SHA512
3173deb4e728133f23874653508bb5a8068eefbd993409f7f36eb347704325dbba1236f522ec1a4bd78b1107962eff47c78194ebc7328f523bfd0cc41e6e813e
Static task
static1
Behavioral task
behavioral1
Sample
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9
-
Size
3.4MB
-
MD5
8d1727fd18ac8dd4a4b7ba7b44ec8df7
-
SHA1
683d961eff3e27a4bcc175ac0da5b3f9dca8127c
-
SHA256
58fa1a7c6eb98fca7cfaba400e06f442d0d14b22a0e5ad42ac08cbe444acd5e9
-
SHA512
3173deb4e728133f23874653508bb5a8068eefbd993409f7f36eb347704325dbba1236f522ec1a4bd78b1107962eff47c78194ebc7328f523bfd0cc41e6e813e
Score10/10-
DarkTrack Payload
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-