07e699981daaca11fcde824dde139152a506e111c578893c6c3afb1916c85462 | Triage

Submit
Reports

Overview

overview

7

Static

static

Wvnnidru.bmp

windows7-x64

3

Wvnnidru.bmp

windows10-2004-x64

7

Sharing

General

Target

Wvnnidru.bmp
Size

2.1MB
Sample

221123-ltawpsff7t
MD5

aff7f1e33647fab087d3e786a5b37daa
SHA1

935df62ce1567e02d7b6604b559d37eaa5c32c63
SHA256

07e699981daaca11fcde824dde139152a506e111c578893c6c3afb1916c85462
SHA512

50eb29f557e7debf1fce43ff9b21cd7323371373ce5d808b77a0b04f3989b94a9da101b2c867f86f730bed2416ded5ecd28627d5662d871106b9e474991ab04e
SSDEEP

24576:G5W1ixGx2xR8rwcKlaOgIRiSGX5BIC1wkt6qzLReHxOka3XrpXjJA/FWfAbJWXWz:zUrre5b3ooqa9tamW/MxwqM2JG8o

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

Wvnnidru.bmp

Resource

win7-20220812-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

Wvnnidru.bmp

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  Wvnnidru.bmp
- Size
  
  2.1MB
- MD5
  
  aff7f1e33647fab087d3e786a5b37daa
- SHA1
  
  935df62ce1567e02d7b6604b559d37eaa5c32c63
- SHA256
  
  07e699981daaca11fcde824dde139152a506e111c578893c6c3afb1916c85462
- SHA512
  
  50eb29f557e7debf1fce43ff9b21cd7323371373ce5d808b77a0b04f3989b94a9da101b2c867f86f730bed2416ded5ecd28627d5662d871106b9e474991ab04e
- SSDEEP
  
  24576:G5W1ixGx2xR8rwcKlaOgIRiSGX5BIC1wkt6qzLReHxOka3XrpXjJA/FWfAbJWXWz:zUrre5b3ooqa9tamW/MxwqM2JG8o
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy