Overview

overview

8

Static

static

9733957c06...8b.exe

windows7-x64

8

9733957c06...8b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9733957c061972f0563e991a054081c49d6183857e4d2037a2fd9cdef776ad8b

  • Size

    20KB

  • Sample

    221030-gw843afbc5

  • MD5

    848de746405dce27bf121fe1a2341c00

  • SHA1

    ca7324f1a2373f63d296f1c1eac50bd09bad0fdb

  • SHA256

    9733957c061972f0563e991a054081c49d6183857e4d2037a2fd9cdef776ad8b

  • SHA512

    5cd2e189edbf19f051f03261784dd283d5175ac1dfcf78a1bdfac574b57886e63fa4617295330f9bbf1eb9e4b9ef81f97e767fc29f1393309a8effcef2b5ef1b

  • SSDEEP

    192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBJ8S:1M3PnQoHDCpHf4I4Qwdc0G5KDJ0S

Score
8/10

Malware Config

Targets

    • Target

      9733957c061972f0563e991a054081c49d6183857e4d2037a2fd9cdef776ad8b

    • Size

      20KB

    • MD5

      848de746405dce27bf121fe1a2341c00

    • SHA1

      ca7324f1a2373f63d296f1c1eac50bd09bad0fdb

    • SHA256

      9733957c061972f0563e991a054081c49d6183857e4d2037a2fd9cdef776ad8b

    • SHA512

      5cd2e189edbf19f051f03261784dd283d5175ac1dfcf78a1bdfac574b57886e63fa4617295330f9bbf1eb9e4b9ef81f97e767fc29f1393309a8effcef2b5ef1b

    • SSDEEP

      192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBJ8S:1M3PnQoHDCpHf4I4Qwdc0G5KDJ0S

    Score
    8/10

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks