Overview

overview

8

Static

static

605b3c8b2e...1b.exe

windows7-x64

8

605b3c8b2e...1b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    605b3c8b2ea96fbc18e38af31b9775dd2b1744f8419ace38541d44760ebd591b

  • Size

    241KB

  • Sample

    221123-hml4lseb32

  • MD5

    ebac74a4f6fa52aca8ce5d9919bb7bfb

  • SHA1

    06d4a01ad0ee71b8c7ba1f14999efd70bea7a1dd

  • SHA256

    605b3c8b2ea96fbc18e38af31b9775dd2b1744f8419ace38541d44760ebd591b

  • SHA512

    98d171b2f8d7634557dc9808df957cd9d73267de16cb39bc7c4d6440003f9579c0a1dfad4b3369ddec383df39e520ff6d81fdf5dd7fb43914d248dacb13b6981

  • SSDEEP

    6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxmW8i:lXmwRo+mv8QD4+0N46NKx78i

Score
8/10
discovery

Malware Config

Targets

    • Target

      605b3c8b2ea96fbc18e38af31b9775dd2b1744f8419ace38541d44760ebd591b

    • Size

      241KB

    • MD5

      ebac74a4f6fa52aca8ce5d9919bb7bfb

    • SHA1

      06d4a01ad0ee71b8c7ba1f14999efd70bea7a1dd

    • SHA256

      605b3c8b2ea96fbc18e38af31b9775dd2b1744f8419ace38541d44760ebd591b

    • SHA512

      98d171b2f8d7634557dc9808df957cd9d73267de16cb39bc7c4d6440003f9579c0a1dfad4b3369ddec383df39e520ff6d81fdf5dd7fb43914d248dacb13b6981

    • SSDEEP

      6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxmW8i:lXmwRo+mv8QD4+0N46NKx78i

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks