Overview

overview

8

Static

static

Details.lnk

windows7-x64

8

Details.lnk

windows10-2004-x64

8

disallowab...ed.cmd

windows7-x64

1

disallowab...ed.cmd

windows10-2004-x64

1

disallowab...ed.dll

windows7-x64

1

disallowab...ed.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Details5379.iso

  • Size

    724KB

  • Sample

    221028-j3gz9sfdel

  • MD5

    ca1bbbdd98637dcf62cf0b988be63424

  • SHA1

    14b1faf59b4d94dff4ce0872c5f47617424c28b6

  • SHA256

    f6b7c660daa3c7fb81cf0b436105c405f6bf5027574de06d16b545e1ec03590d

  • SHA512

    26a25b1195dd21dc16f2b6b83b8c66441508bab8ddec31ed89eb8068aac7431001b09b9993bbbcbcb78182e8bbe953ac5e2e69fbb8936f471303565c23c79a69

  • SSDEEP

    12288:6qdD/sblafl4M/8toGXJZ6diNjTo8Ywr6t57AKCW3wdOcUwDOMHHCgOWeO:6qdclafl4eGXuiNk8Ye6cWw4wrHHCgO+

Score
8/10

Malware Config

Targets

    • Target

      Details.lnk

    • Size

      1KB

    • MD5

      52e7e428ee73d469bab5e6917021bd03

    • SHA1

      2650ba8c6fb0def824a3fbc9ad71a4a20341c3cf

    • SHA256

      915212f323b0f97c0c3311b8a24c96bc683845c97f566fca697fd567585b13c9

    • SHA512

      bc8805691d2caff4d5e53b772c0fbb6d43c7efd383318048dc84849b70c0980fcc29cd4c486116d0a72dbc412e45f09c5c20e30c8233eef6ac25e2a40e1030a4

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      disallowable/beached.cmd

    • Size

      366B

    • MD5

      fe537d689707de04b796ae55edf708ae

    • SHA1

      5380439ea576ae3f06028750db5e6437f69380f9

    • SHA256

      6cb6668936b54e3506681ef80d8c5887b530e24b51771475efaecfd6f719678d

    • SHA512

      385ab1cf8e90da539a537de375aed1a8f1dc3e9d9404a745756ad7abceba358e09b93358939c868e8f531b5df8a59afce20a1ddec62659759494dbbaac47e2cc

    Score
    1/10
    behavioral3behavioral4

    • Target

      disallowable/lathered.dat

    • Size

      422KB

    • MD5

      0d1e0b675c2d011dcfc50d8f32be384c

    • SHA1

      0b58740268ce9dec99972000115a84d28a88f07f

    • SHA256

      f7b52dd58ca45a89769c61c6bb2fdcea5c68c1fe2b43578b4678c979cc106a1b

    • SHA512

      08b296caa57ea788892ab8b802efecc5e16f03c6077fa5dfed574c06c31ac6e474503089d7df74a4284998cdfb69df8142d98be7c8b996a41a0cb6c93c3b26b8

    • SSDEEP

      12288:eqdD/sblafl4M/8toGXJZ6diNjTo8Ywr6t57AKC:eqdclafl4eGXuiNk8Ye6c

    Score
    1/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v6

Tasks