1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65 | Triage

Submit
Reports

Overview

overview

8

Static

static

1ee4dbdfad...65.exe

windows7-x64

8

1ee4dbdfad...65.exe

windows10-2004-x64

8

Sharing

General

Target

1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65
Size

2.4MB
Sample

220930-xe81qsedc4
MD5

5518a8ce491829d2a13fc9529bc37472
SHA1

9e6d6157e6cb0608be8499ea2325a0f4b6414a90
SHA256

1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65
SHA512

e870a5b74531c0b749a5641c29bbb587963cae93060deef83c0cb45d5f811fcc13abd178dd174eae2fb8df3bb30217e692377ad0e2e5dcb95445fce91d5fa50e
SSDEEP

49152:K7lhiByVv53/WnZoq133HCDlDCalQU0tRoqv7zvoQz+HiE4ql0H:K7lhi8lAHHuVCmuvokv7z+HiXw8

Score

8^/10

evasion

Static task

static1

Behavioral task

behavioral1

Sample

1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65.exe

Resource

win7-20220901-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65
- Size
  
  2.4MB
- MD5
  
  5518a8ce491829d2a13fc9529bc37472
- SHA1
  
  9e6d6157e6cb0608be8499ea2325a0f4b6414a90
- SHA256
  
  1ee4dbdfad2e44218f82f796fc51121e8df372bc7ac9017207aa065762ed6a65
- SHA512
  
  e870a5b74531c0b749a5641c29bbb587963cae93060deef83c0cb45d5f811fcc13abd178dd174eae2fb8df3bb30217e692377ad0e2e5dcb95445fce91d5fa50e
- SSDEEP
  
  49152:K7lhiByVv53/WnZoq133HCDlDCalQU0tRoqv7zvoQz+HiE4ql0H:K7lhi8lAHHuVCmuvokv7z+HiXw8
Score

8^/10

evasion
- Executes dropped EXE
- Modifies Windows Firewall
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy