Overview

overview

8

Static

static

8d5f9b5151...52.exe

windows7-x64

8

8d5f9b5151...52.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    8d5f9b51511963e1731172c440baa40cc8fca0ad5505587d8455559030ea3d52

  • Size

    328KB

  • Sample

    221002-p43w1sffh6

  • MD5

    6e363d78061a15a645d84223d30ed280

  • SHA1

    c5a8757f98b15ca447de3e6f6b09682bfd70e51f

  • SHA256

    8d5f9b51511963e1731172c440baa40cc8fca0ad5505587d8455559030ea3d52

  • SHA512

    f58afffcc922a047cfb6862e0177c6f5e2a979e8fbe1b7eb8ceeb3e5ebf15ba1b91095b65d2df85017dd3a961136bddf2f6369904c8f7cbab0c0254c963e5a17

  • SSDEEP

    6144:kig6vnUlmf8X/T+M85bTDRGnxpWNIH8mytC0yj0Ilk3v9KP3fynPLnXuOnk9u2wq:kig6vUQ8X/T2DRGnxoNIcmys0DIu3vsR

Score
8/10

Malware Config

Targets

    • Target

      8d5f9b51511963e1731172c440baa40cc8fca0ad5505587d8455559030ea3d52

    • Size

      328KB

    • MD5

      6e363d78061a15a645d84223d30ed280

    • SHA1

      c5a8757f98b15ca447de3e6f6b09682bfd70e51f

    • SHA256

      8d5f9b51511963e1731172c440baa40cc8fca0ad5505587d8455559030ea3d52

    • SHA512

      f58afffcc922a047cfb6862e0177c6f5e2a979e8fbe1b7eb8ceeb3e5ebf15ba1b91095b65d2df85017dd3a961136bddf2f6369904c8f7cbab0c0254c963e5a17

    • SSDEEP

      6144:kig6vnUlmf8X/T+M85bTDRGnxpWNIH8mytC0yj0Ilk3v9KP3fynPLnXuOnk9u2wq:kig6vUQ8X/T2DRGnxoNIcmys0DIu3vsR

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks