46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

46bd2c80ad...e2.exe

windows7-x64

7

46bd2c80ad...e2.exe

windows10-2004-x64

8

Sharing

General

Target

46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2
Size

233KB
Sample

221123-m552naba61
MD5

fea5cc59ec9214b3de6999a2c75c2cd9
SHA1

3dffabf206f98feccfd7320b703a264d6a305772
SHA256

46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2
SHA512

fecdd54ee08b3c22391b668f949308078d0568f26c8b54b9d12457c0e5f6a1aa6baaf5fa90645c522d452f52d68559db45ef4bb7624c972efaed25b7a6034962
SSDEEP

6144:re34zuzWkUjqyIgUIzhMeWa0p5TbArXyNsKNl01Y+7J:BuaFI4wvA7y4+E

Score

8^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2.exe

Resource

win7-20220812-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2
- Size
  
  233KB
- MD5
  
  fea5cc59ec9214b3de6999a2c75c2cd9
- SHA1
  
  3dffabf206f98feccfd7320b703a264d6a305772
- SHA256
  
  46bd2c80adf76dfe633443a56adfcc1ee655cc57a3c9f655f4f92c67b2e8ace2
- SHA512
  
  fecdd54ee08b3c22391b668f949308078d0568f26c8b54b9d12457c0e5f6a1aa6baaf5fa90645c522d452f52d68559db45ef4bb7624c972efaed25b7a6034962
- SSDEEP
  
  6144:re34zuzWkUjqyIgUIzhMeWa0p5TbArXyNsKNl01Y+7J:BuaFI4wvA7y4+E
Score

8^/10

persistence
- Downloads MZ/PE file
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy