Overview

overview

8

Static

static

6c7a97912f...ea.exe

windows7-x64

8

6c7a97912f...ea.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6c7a97912fbe8fa8da4e13d076582c3c239ce1b86635646bda4b35134269f8ea

  • Size

    1.1MB

  • Sample

    221106-fh7hmsdbe5

  • MD5

    0164d2a9ecc965b0e83c174db46d0d20

  • SHA1

    17c4769040d8e3a458bee2af81ff12a594868cbb

  • SHA256

    6c7a97912fbe8fa8da4e13d076582c3c239ce1b86635646bda4b35134269f8ea

  • SHA512

    905d1f6d820a6279977f4c035c3d2dde805986e0eefca3fb0ba765afcb4ef9a3fafbd2dc812059c737a598d7e2a656f759350a4f6ca3c6628d8c18628e11d08e

  • SSDEEP

    24576:MyPyCZFHvNlHgBnSU8TjB3felGX4+y23g0rPIH1OYG:M3pS7ws4TswHcYG

Score
8/10

Malware Config

Targets

    • Target

      6c7a97912fbe8fa8da4e13d076582c3c239ce1b86635646bda4b35134269f8ea

    • Size

      1.1MB

    • MD5

      0164d2a9ecc965b0e83c174db46d0d20

    • SHA1

      17c4769040d8e3a458bee2af81ff12a594868cbb

    • SHA256

      6c7a97912fbe8fa8da4e13d076582c3c239ce1b86635646bda4b35134269f8ea

    • SHA512

      905d1f6d820a6279977f4c035c3d2dde805986e0eefca3fb0ba765afcb4ef9a3fafbd2dc812059c737a598d7e2a656f759350a4f6ca3c6628d8c18628e11d08e

    • SSDEEP

      24576:MyPyCZFHvNlHgBnSU8TjB3felGX4+y23g0rPIH1OYG:M3pS7ws4TswHcYG

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Drops startup file

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks