Overview

overview

8

Static

static

831a26525d...89.exe

windows7-x64

8

831a26525d...89.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    831a26525dc4d9f2b00de563a90aaecdff3298b961145e1f189657194de1a489

  • Size

    158KB

  • Sample

    221020-sz9qjsbhg3

  • MD5

    96621c845fc3bbf6b25fa4971fc6474d

  • SHA1

    582ac0e8cf4f7d9e64dde15e954540d9aefdf267

  • SHA256

    831a26525dc4d9f2b00de563a90aaecdff3298b961145e1f189657194de1a489

  • SHA512

    de6348dc514906253055c9de0f7850b27558396bdea7334cbed54d355e56457489455d9fd6fe2504f3a88f3297b839c7fa186843d1a2cbdcd61d86ae283f3e2c

  • SSDEEP

    3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hMKBz6rNwPGAFB7Sd2raeAICDkt:PbXE9OiTGfhEClq9FKxKNqFTWe84

Score
8/10
discovery

Malware Config

Targets

    • Target

      831a26525dc4d9f2b00de563a90aaecdff3298b961145e1f189657194de1a489

    • Size

      158KB

    • MD5

      96621c845fc3bbf6b25fa4971fc6474d

    • SHA1

      582ac0e8cf4f7d9e64dde15e954540d9aefdf267

    • SHA256

      831a26525dc4d9f2b00de563a90aaecdff3298b961145e1f189657194de1a489

    • SHA512

      de6348dc514906253055c9de0f7850b27558396bdea7334cbed54d355e56457489455d9fd6fe2504f3a88f3297b839c7fa186843d1a2cbdcd61d86ae283f3e2c

    • SSDEEP

      3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hMKBz6rNwPGAFB7Sd2raeAICDkt:PbXE9OiTGfhEClq9FKxKNqFTWe84

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks