Overview

overview

6

Static

static

224a7ec8fb...38.exe

windows7-x64

6

224a7ec8fb...38.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    224a7ec8fb70ef9e071d5062a93cbf83b1b7594957d885e74da4f7ff58a21238

  • Size

    634KB

  • Sample

    221004-aztp8aebhm

  • MD5

    2d2481ee1f271adc201b8f1cc9878ec3

  • SHA1

    2424e06c2b4de0ed1fcc4a62960002f28b7aa6b9

  • SHA256

    224a7ec8fb70ef9e071d5062a93cbf83b1b7594957d885e74da4f7ff58a21238

  • SHA512

    57e7acdae5b5170ac875367dd29bf16e78cc48213543098e33e50f198df56b868e8ed30e184f3fa7fdade41891fdf8b51727eeea64f1f0e7969f0687b0af06fa

  • SSDEEP

    12288:m1kJ4FdktcZ9vj7TMD970Lrq9fodMBv78hI2+aGMScEzsGnF:TJ4LvHbu7v9giv7vfaGDccsu

Score
6/10

Malware Config

Targets

    • Target

      224a7ec8fb70ef9e071d5062a93cbf83b1b7594957d885e74da4f7ff58a21238

    • Size

      634KB

    • MD5

      2d2481ee1f271adc201b8f1cc9878ec3

    • SHA1

      2424e06c2b4de0ed1fcc4a62960002f28b7aa6b9

    • SHA256

      224a7ec8fb70ef9e071d5062a93cbf83b1b7594957d885e74da4f7ff58a21238

    • SHA512

      57e7acdae5b5170ac875367dd29bf16e78cc48213543098e33e50f198df56b868e8ed30e184f3fa7fdade41891fdf8b51727eeea64f1f0e7969f0687b0af06fa

    • SSDEEP

      12288:m1kJ4FdktcZ9vj7TMD970Lrq9fodMBv78hI2+aGMScEzsGnF:TJ4LvHbu7v9giv7vfaGDccsu

    Score
    6/10

    • Drops desktop.ini file(s)

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks