Overview

overview

8

Static

static

a261d5424d...f1.exe

windows7-x64

8

a261d5424d...f1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a261d5424dccd9f7d9653b8771ef7703eb5fad31dd74a8eb2c223dee98772cf1

  • Size

    347KB

  • Sample

    221002-x9tjjahdan

  • MD5

    4f2e7f10507aa0fafb0b2b3c53a66870

  • SHA1

    849faa37e74620acb4de5b8a4c8d675a48f1ad58

  • SHA256

    a261d5424dccd9f7d9653b8771ef7703eb5fad31dd74a8eb2c223dee98772cf1

  • SHA512

    1d854d00fc23d45afcdcbd2cfd2e7fb765cc754de22849894dda40175375d035d3d84fa8f8f653427af7df310c9eb841cca41493af4f00728fcff850391ab07a

  • SSDEEP

    6144:zWbY8Xj9lPIBc0aHel+5+TOxNWgRwcPo7BS8yNLrUd7+dq0fAbvvo3S+Xk6P94CC:zWU8T9lw2rHn5+/YwvX+rS6M0G3p+Xk5

Score
8/10
persistence

Malware Config

Targets

    • Target

      a261d5424dccd9f7d9653b8771ef7703eb5fad31dd74a8eb2c223dee98772cf1

    • Size

      347KB

    • MD5

      4f2e7f10507aa0fafb0b2b3c53a66870

    • SHA1

      849faa37e74620acb4de5b8a4c8d675a48f1ad58

    • SHA256

      a261d5424dccd9f7d9653b8771ef7703eb5fad31dd74a8eb2c223dee98772cf1

    • SHA512

      1d854d00fc23d45afcdcbd2cfd2e7fb765cc754de22849894dda40175375d035d3d84fa8f8f653427af7df310c9eb841cca41493af4f00728fcff850391ab07a

    • SSDEEP

      6144:zWbY8Xj9lPIBc0aHel+5+TOxNWgRwcPo7BS8yNLrUd7+dq0fAbvvo3S+Xk6P94CC:zWU8T9lw2rHn5+/YwvX+rS6M0G3p+Xk5

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks