Overview

overview

7

Static

static

dc2e49bf6c...92.exe

windows7-x64

7

dc2e49bf6c...92.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dc2e49bf6c97e7882cdb7dd953622fb31dc01e4d7ca02196f740639236683492

  • Size

    7KB

  • Sample

    221123-vh3l1shb39

  • MD5

    52c387d66edca29d7b059f6a0c3accd0

  • SHA1

    50c86c919e057630aaaea56bd864f2371ca962c3

  • SHA256

    dc2e49bf6c97e7882cdb7dd953622fb31dc01e4d7ca02196f740639236683492

  • SHA512

    4e906bcae00ac2ebd930fa1335c1538a70bfac2c8c0ab3db2341b54c119c994deed0bcf02e37eecc793e0e096c4d06bb8fd19092d61e1a7f281cea07f74aff91

  • SSDEEP

    96:pQ54+WvvTbLa7v11o+WLNqszZZ1YrI3uWaDLeBomjjP:u54+Wvvf0ro3oqgGaDLI/b

Score
7/10

Malware Config

Targets

    • Target

      dc2e49bf6c97e7882cdb7dd953622fb31dc01e4d7ca02196f740639236683492

    • Size

      7KB

    • MD5

      52c387d66edca29d7b059f6a0c3accd0

    • SHA1

      50c86c919e057630aaaea56bd864f2371ca962c3

    • SHA256

      dc2e49bf6c97e7882cdb7dd953622fb31dc01e4d7ca02196f740639236683492

    • SHA512

      4e906bcae00ac2ebd930fa1335c1538a70bfac2c8c0ab3db2341b54c119c994deed0bcf02e37eecc793e0e096c4d06bb8fd19092d61e1a7f281cea07f74aff91

    • SSDEEP

      96:pQ54+WvvTbLa7v11o+WLNqszZZ1YrI3uWaDLeBomjjP:u54+Wvvf0ro3oqgGaDLI/b

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Command-Line Interface

1
T1059

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks