Overview

overview

8

Static

static

c5fac06dc5...54.exe

windows7-x64

8

c5fac06dc5...54.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c5fac06dc5490d853ef24b050d1d738a4d2aeffe123bb4e4ca858a47d4792b54

  • Size

    28KB

  • Sample

    221123-mwrgxaad2z

  • MD5

    e175f67434cd197a20050e38fce71736

  • SHA1

    bd6939de1dda4cf658403c6c057024e5dd7746a9

  • SHA256

    c5fac06dc5490d853ef24b050d1d738a4d2aeffe123bb4e4ca858a47d4792b54

  • SHA512

    134bf5a6bd66cb190624b747d390b03ecde5aa03dce4a580b3b961857af4a0f3c8d3a8a9d5f1d8d57806273e600fb4a12c21420db9ebcd2b7d483a2aae8efc4a

  • SSDEEP

    384:2UonGN8G07mxtT4GIBfTTzzYJxru+j1/yzqUbIXi7jm4vG1+:xon+8G07mxqNTTzzYD96H7/o+

Score
8/10

Malware Config

Targets

    • Target

      c5fac06dc5490d853ef24b050d1d738a4d2aeffe123bb4e4ca858a47d4792b54

    • Size

      28KB

    • MD5

      e175f67434cd197a20050e38fce71736

    • SHA1

      bd6939de1dda4cf658403c6c057024e5dd7746a9

    • SHA256

      c5fac06dc5490d853ef24b050d1d738a4d2aeffe123bb4e4ca858a47d4792b54

    • SHA512

      134bf5a6bd66cb190624b747d390b03ecde5aa03dce4a580b3b961857af4a0f3c8d3a8a9d5f1d8d57806273e600fb4a12c21420db9ebcd2b7d483a2aae8efc4a

    • SSDEEP

      384:2UonGN8G07mxtT4GIBfTTzzYJxru+j1/yzqUbIXi7jm4vG1+:xon+8G07mxqNTTzzYD96H7/o+

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks