Overview

overview

7

Static

static

a850ecf417...93.exe

windows7-x64

6

a850ecf417...93.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a850ecf417220d71a76126fa87e17ef2f8899b2767f9c237fb2498637dbab593

  • Size

    72KB

  • Sample

    221123-vqmwjacf4v

  • MD5

    52af2e2d798f36edf8130224e4125300

  • SHA1

    36d09b4b4b034e41621e9f5565f081828cb8d8ba

  • SHA256

    a850ecf417220d71a76126fa87e17ef2f8899b2767f9c237fb2498637dbab593

  • SHA512

    9b9b0031068733126f6b87ce5617d909fbdd1edb15b1ce68b6ce5ff36ce26f47246a99772bb6c13d1bcd190cc54f79382ce13471a197a09418ce3a79f05ef164

  • SSDEEP

    1536:+msEVUYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6E5W:+HYxgU6kl+0sTSVYw/4/xEKb6JVoNHIZ

Score
7/10

Malware Config

Targets

    • Target

      a850ecf417220d71a76126fa87e17ef2f8899b2767f9c237fb2498637dbab593

    • Size

      72KB

    • MD5

      52af2e2d798f36edf8130224e4125300

    • SHA1

      36d09b4b4b034e41621e9f5565f081828cb8d8ba

    • SHA256

      a850ecf417220d71a76126fa87e17ef2f8899b2767f9c237fb2498637dbab593

    • SHA512

      9b9b0031068733126f6b87ce5617d909fbdd1edb15b1ce68b6ce5ff36ce26f47246a99772bb6c13d1bcd190cc54f79382ce13471a197a09418ce3a79f05ef164

    • SSDEEP

      1536:+msEVUYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6E5W:+HYxgU6kl+0sTSVYw/4/xEKb6JVoNHIZ

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Peripheral Device Discovery

1
T1120

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks