Overview

overview

8

Static

static

4d627dce74...55.exe

windows7-x64

8

4d627dce74...55.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4d627dce7453de5aecbaf5362c65be354be38c410936f388093a46b56c764055

  • Size

    241KB

  • Sample

    221123-hmq3kahf4s

  • MD5

    af1f4f86dc4594add73e35f73011e2b8

  • SHA1

    51cf43f667dba267a27f43b3eb4818564359bd0b

  • SHA256

    4d627dce7453de5aecbaf5362c65be354be38c410936f388093a46b56c764055

  • SHA512

    850c1aa4c4be581879c24ee67aba986de6c19f2a419ccec13c34a63277c9f3fb6021c04cf863aa558790fd65d4b317d2844e32d652b8c11c7e2bd426bf4a0d5d

  • SSDEEP

    6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxCpQ0wxFT+g:lXmwRo+mv8QD4+0N46NKxCyHxl

Score
8/10
discovery

Malware Config

Targets

    • Target

      4d627dce7453de5aecbaf5362c65be354be38c410936f388093a46b56c764055

    • Size

      241KB

    • MD5

      af1f4f86dc4594add73e35f73011e2b8

    • SHA1

      51cf43f667dba267a27f43b3eb4818564359bd0b

    • SHA256

      4d627dce7453de5aecbaf5362c65be354be38c410936f388093a46b56c764055

    • SHA512

      850c1aa4c4be581879c24ee67aba986de6c19f2a419ccec13c34a63277c9f3fb6021c04cf863aa558790fd65d4b317d2844e32d652b8c11c7e2bd426bf4a0d5d

    • SSDEEP

      6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxCpQ0wxFT+g:lXmwRo+mv8QD4+0N46NKxCyHxl

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks