Overview

overview

7

Static

static

1

37226c2a7b...f5.exe

windows7-x64

7

37226c2a7b...f5.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    37226c2a7bdf8087f947c8303539cd4d17d933a08ee196413aaea78a2604c7f5

  • Size

    113KB

  • Sample

    220919-pv2ycshbf7

  • MD5

    130d7f2db76e189a07d0a27dcca40cea

  • SHA1

    c004862bc5768ed546cce7fa0c9d4723f8a68498

  • SHA256

    37226c2a7bdf8087f947c8303539cd4d17d933a08ee196413aaea78a2604c7f5

  • SHA512

    6421c1d7ebda320541bcec1c23300221798c963b800b6d172f278b49ffaae32a2abe82cf49c98d88d2b853cdbe443aded017e670c207a7ff37dead2275e51270

  • SSDEEP

    3072:34eYZ4+1JXJJO1sIOZFe4Cp+JIpNVd/C290bA:I5O8KSIkFe4qpNVc5k

Score
7/10

Malware Config

Targets

    • Target

      37226c2a7bdf8087f947c8303539cd4d17d933a08ee196413aaea78a2604c7f5

    • Size

      113KB

    • MD5

      130d7f2db76e189a07d0a27dcca40cea

    • SHA1

      c004862bc5768ed546cce7fa0c9d4723f8a68498

    • SHA256

      37226c2a7bdf8087f947c8303539cd4d17d933a08ee196413aaea78a2604c7f5

    • SHA512

      6421c1d7ebda320541bcec1c23300221798c963b800b6d172f278b49ffaae32a2abe82cf49c98d88d2b853cdbe443aded017e670c207a7ff37dead2275e51270

    • SSDEEP

      3072:34eYZ4+1JXJJO1sIOZFe4Cp+JIpNVd/C290bA:I5O8KSIkFe4qpNVc5k

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks