Overview

overview

8

Static

static

da04780940...f6.exe

windows7-x64

8

da04780940...f6.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    da04780940bb213204bc5fa9821108d5e9f51c72c4ddcbb36475ed7183fffdf6

  • Size

    20KB

  • Sample

    221121-szn4vaff98

  • MD5

    220a139a07ef5b9caf068eaf9ce1ab70

  • SHA1

    4403877c8008ed60bb7d743c5d484ceffd4df5f3

  • SHA256

    da04780940bb213204bc5fa9821108d5e9f51c72c4ddcbb36475ed7183fffdf6

  • SHA512

    7e8c99c581b6ba177216f10728dbdfdd3e5917db90333fc7bc2fe10294e406b8e62baa14071b1a792310d39d2500fe893efd39ec88450042b28e3ef79e8dad15

  • SSDEEP

    192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBJd:1M3PnQoHDCpHf4I4Qwdc0G5KDJ1

Score
8/10

Malware Config

Targets

    • Target

      da04780940bb213204bc5fa9821108d5e9f51c72c4ddcbb36475ed7183fffdf6

    • Size

      20KB

    • MD5

      220a139a07ef5b9caf068eaf9ce1ab70

    • SHA1

      4403877c8008ed60bb7d743c5d484ceffd4df5f3

    • SHA256

      da04780940bb213204bc5fa9821108d5e9f51c72c4ddcbb36475ed7183fffdf6

    • SHA512

      7e8c99c581b6ba177216f10728dbdfdd3e5917db90333fc7bc2fe10294e406b8e62baa14071b1a792310d39d2500fe893efd39ec88450042b28e3ef79e8dad15

    • SSDEEP

      192:1l5E3krTuntKy0peHDfCpHfBv+I4QwXt9V+jqu0G5KDJBJd:1M3PnQoHDCpHf4I4Qwdc0G5KDJ1

    Score
    8/10

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks