Overview

overview

8

Static

static

1

d5a3a279a1...8b.exe

windows7-x64

8

d5a3a279a1...8b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d5a3a279a14383912fa452539275b539416ac71c9fb37be1321b937f9f3bec8b

  • Size

    1.6MB

  • Sample

    221027-3w971seag5

  • MD5

    d0e41aceb636a1e2c0b67fb3e4cc0aa7

  • SHA1

    35adb07dc15ca773ac832e935f70b5d8b0cd9b1c

  • SHA256

    d5a3a279a14383912fa452539275b539416ac71c9fb37be1321b937f9f3bec8b

  • SHA512

    2d04c16afa8f79e56723bba804cefc1210e1795d2ca37eb281d22a7932106c87b879911100680e690dd964b1c8d327bf5ca18c238f6a9a3b921922c62318a8bd

  • SSDEEP

    24576:RMFmUAFarHoRx4Wl5kBMz1GTt2D5Wv5tnoESnzfpAB0llIm031syeWR+0Sn:aFmU5HoTl5pAB0nzf+0l2m0FsbWR+B

Score
8/10

Malware Config

Targets

    • Target

      d5a3a279a14383912fa452539275b539416ac71c9fb37be1321b937f9f3bec8b

    • Size

      1.6MB

    • MD5

      d0e41aceb636a1e2c0b67fb3e4cc0aa7

    • SHA1

      35adb07dc15ca773ac832e935f70b5d8b0cd9b1c

    • SHA256

      d5a3a279a14383912fa452539275b539416ac71c9fb37be1321b937f9f3bec8b

    • SHA512

      2d04c16afa8f79e56723bba804cefc1210e1795d2ca37eb281d22a7932106c87b879911100680e690dd964b1c8d327bf5ca18c238f6a9a3b921922c62318a8bd

    • SSDEEP

      24576:RMFmUAFarHoRx4Wl5kBMz1GTt2D5Wv5tnoESnzfpAB0llIm031syeWR+0Sn:aFmU5HoTl5pAB0nzf+0l2m0FsbWR+B

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks