Overview

overview

10

Static

static

1

818a6a5c8a...51.exe

windows7-x64

10

818a6a5c8a...51.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    818a6a5c8ae8c588be719d686fe785e264426e49231f62ada25759cc47cbdb51

  • Size

    64KB

  • Sample

    221020-hf6vfaaba7

  • MD5

    804b7ff89e3ef7cb3f54ab903dac363b

  • SHA1

    9dd896e60665d10bf1aef839cb79383d78583666

  • SHA256

    818a6a5c8ae8c588be719d686fe785e264426e49231f62ada25759cc47cbdb51

  • SHA512

    0b0dcafcc73051a7e6eda4bb743e20233038fcad7bb5fe9832d9d8d46949abbb0102444867969b9f5967691cbc2bc803aa68805b43812b39b92ce0550f739c48

  • SSDEEP

    1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVME/:V3c1fP4AJJv45sCcx7JBb/E/

Score
10/10
evasion

Malware Config

Targets

    • Target

      818a6a5c8ae8c588be719d686fe785e264426e49231f62ada25759cc47cbdb51

    • Size

      64KB

    • MD5

      804b7ff89e3ef7cb3f54ab903dac363b

    • SHA1

      9dd896e60665d10bf1aef839cb79383d78583666

    • SHA256

      818a6a5c8ae8c588be719d686fe785e264426e49231f62ada25759cc47cbdb51

    • SHA512

      0b0dcafcc73051a7e6eda4bb743e20233038fcad7bb5fe9832d9d8d46949abbb0102444867969b9f5967691cbc2bc803aa68805b43812b39b92ce0550f739c48

    • SSDEEP

      1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVME/:V3c1fP4AJJv45sCcx7JBb/E/

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks