Overview

overview

7

Static

static

2fb27fd814...11.exe

windows7-x64

7

2fb27fd814...11.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2fb27fd814698adc377e917cc87a2796894560c04ce97309ab53eb0f2068fd11

  • Size

    88KB

  • Sample

    221123-vt49zsch8t

  • MD5

    4526d9cefe7307213aaaff289acb1810

  • SHA1

    c90cb36c781af7e829032b1006657788592b8cbc

  • SHA256

    2fb27fd814698adc377e917cc87a2796894560c04ce97309ab53eb0f2068fd11

  • SHA512

    6cd6f84fd1087f449e10c1bd73136da160a08b7580d330b4a444eef67f051822f96a8515b740bb1bf998974ae21725f7c15a06974853eef9a3f26ddd3f35e4f1

  • SSDEEP

    1536:/b8EHkSdEAUX1UUsHgc4OyiP4CP7C1aSP:/bbESd3Mf9OdVPn2

Score
7/10

Malware Config

Targets

    • Target

      2fb27fd814698adc377e917cc87a2796894560c04ce97309ab53eb0f2068fd11

    • Size

      88KB

    • MD5

      4526d9cefe7307213aaaff289acb1810

    • SHA1

      c90cb36c781af7e829032b1006657788592b8cbc

    • SHA256

      2fb27fd814698adc377e917cc87a2796894560c04ce97309ab53eb0f2068fd11

    • SHA512

      6cd6f84fd1087f449e10c1bd73136da160a08b7580d330b4a444eef67f051822f96a8515b740bb1bf998974ae21725f7c15a06974853eef9a3f26ddd3f35e4f1

    • SSDEEP

      1536:/b8EHkSdEAUX1UUsHgc4OyiP4CP7C1aSP:/bbESd3Mf9OdVPn2

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Peripheral Device Discovery

1
T1120

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks