Overview

overview

8

Static

static

1

01c497854d...4f.exe

windows7-x64

8

01c497854d...4f.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    01c497854db559f370f25ee572c2a2b4b447bb35c43e2d661b6ddaba0b0d014f

  • Size

    349KB

  • Sample

    221123-tebtfsgh5v

  • MD5

    25ef825b6f1d4ea2e4ec664680ce4ffb

  • SHA1

    abba173fded64b1b372c59f53abfab41cc214f6a

  • SHA256

    01c497854db559f370f25ee572c2a2b4b447bb35c43e2d661b6ddaba0b0d014f

  • SHA512

    61dbe615d019fcdc740ee5301f9ac20d7144e9531983f587b086465c8e9362c72b5ea67e60429d5e7358a18ec55f11b29bc820b08d1a6441eb5bbeb466436ee4

  • SSDEEP

    6144:ye34TNE/nu/EJXAF8u1qBhGNy4909VezjiGF+nh9CUZLcb+FfM5yh:uTEJXs1q2N1906jidGUZLcb+FfEyh

Score
8/10

Malware Config

Targets

    • Target

      01c497854db559f370f25ee572c2a2b4b447bb35c43e2d661b6ddaba0b0d014f

    • Size

      349KB

    • MD5

      25ef825b6f1d4ea2e4ec664680ce4ffb

    • SHA1

      abba173fded64b1b372c59f53abfab41cc214f6a

    • SHA256

      01c497854db559f370f25ee572c2a2b4b447bb35c43e2d661b6ddaba0b0d014f

    • SHA512

      61dbe615d019fcdc740ee5301f9ac20d7144e9531983f587b086465c8e9362c72b5ea67e60429d5e7358a18ec55f11b29bc820b08d1a6441eb5bbeb466436ee4

    • SSDEEP

      6144:ye34TNE/nu/EJXAF8u1qBhGNy4909VezjiGF+nh9CUZLcb+FfM5yh:uTEJXs1q2N1906jidGUZLcb+FfEyh

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks