Overview

overview

8

Static

static

20d84e52d5...f1.exe

windows7-x64

8

20d84e52d5...f1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20d84e52d5bd718dbc71e0abbec70425be63455b2904e3dc452a72c55aa338f1

  • Size

    241KB

  • Sample

    221123-hmhq7aeb28

  • MD5

    84947ac590ddd1d873325f046c021326

  • SHA1

    25bd5e935eb5c6d0b92e4d9af15570d0ec9ec08b

  • SHA256

    20d84e52d5bd718dbc71e0abbec70425be63455b2904e3dc452a72c55aa338f1

  • SHA512

    cdf2185a04062ebca4590655b124ab12c8dce962108cf82b929424731e476f70151897d63000b7753f118fe0fcb35f8f39586725aad862f11ccdf49075c3620e

  • SSDEEP

    6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxXV6zYh4OEYS:lXmwRo+mv8QD4+0N46NKxXV68h4ObS

Score
8/10
discovery

Malware Config

Targets

    • Target

      20d84e52d5bd718dbc71e0abbec70425be63455b2904e3dc452a72c55aa338f1

    • Size

      241KB

    • MD5

      84947ac590ddd1d873325f046c021326

    • SHA1

      25bd5e935eb5c6d0b92e4d9af15570d0ec9ec08b

    • SHA256

      20d84e52d5bd718dbc71e0abbec70425be63455b2904e3dc452a72c55aa338f1

    • SHA512

      cdf2185a04062ebca4590655b124ab12c8dce962108cf82b929424731e476f70151897d63000b7753f118fe0fcb35f8f39586725aad862f11ccdf49075c3620e

    • SSDEEP

      6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxXV6zYh4OEYS:lXmwRo+mv8QD4+0N46NKxXV68h4ObS

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks