8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6 | Triage

Submit
Reports

Overview

overview

9

Static

static

8854e55c47...f6.exe

windows7_x64

9

8854e55c47...f6.exe

windows10-2004_x64

7

Sharing

General

Target

8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6
Size

182KB
Sample

220625-fjf23sehgm
MD5

fffdd134d751be12101103ffe3498666
SHA1

b010f97b315fd21c22172c982f35fb506d2ce0c9
SHA256

8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6
SHA512

fa763ae118ec25dfa8bd0785043f46a82e12a321fffea3b9f32f02f5f5b0262ec2a6d519737a127802ded5f3490dedef4874434f90d9beed9e04b6541821f1b0

Score

9^/10

rezer0

Static task

static1

Behavioral task

behavioral1

Sample

8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6.exe

Resource

win10v2004-20220414-en

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6
- Size
  
  182KB
- MD5
  
  fffdd134d751be12101103ffe3498666
- SHA1
  
  b010f97b315fd21c22172c982f35fb506d2ce0c9
- SHA256
  
  8854e55c47b161a9a34bbd04b9d50c0d7001437e3a9bbea2ab4a07bf9821fdf6
- SHA512
  
  fa763ae118ec25dfa8bd0785043f46a82e12a321fffea3b9f32f02f5f5b0262ec2a6d519737a127802ded5f3490dedef4874434f90d9beed9e04b6541821f1b0
Score

9^/10

rezer0
- ReZer0 packer
  Detects ReZer0, a packer with multiple versions used in various campaigns.
  rezer0
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy