46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb | Triage

Submit
Reports

Overview

overview

Static

static

5

46df19038c...eb.exe

windows7-x64

46df19038c...eb.exe

windows10-2004-x64

Sharing

General

Target

46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb
Size

612KB
Sample

221123-xemshaeg52
MD5

03a29f4c82106669691aab94b648db66
SHA1

e33a8dbf43544e00fc06f934ed253dcc56442a65
SHA256

46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb
SHA512

a7fdbaf6de13cda9cdce7e9383d0264dcaa2eac538e6ce60e4f9fa4fec7375a76f1bc41fadc51f562456048cfdf4c9bf5e530e9f6d3a26eb86e8518a05faa937
SSDEEP

12288:vaWz2Mg7v3qnCi8ErQohh0F4CCJ8lnyLQHSb:yadMv6CYrjqnyLQyb

Score

10^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb.exe

Resource

win7-20220901-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb
- Size
  
  612KB
- MD5
  
  03a29f4c82106669691aab94b648db66
- SHA1
  
  e33a8dbf43544e00fc06f934ed253dcc56442a65
- SHA256
  
  46df19038c6e96cae6ddd4e8f1f1889836a83d5cbacbd317208d0925259022eb
- SHA512
  
  a7fdbaf6de13cda9cdce7e9383d0264dcaa2eac538e6ce60e4f9fa4fec7375a76f1bc41fadc51f562456048cfdf4c9bf5e530e9f6d3a26eb86e8518a05faa937
- SSDEEP
  
  12288:vaWz2Mg7v3qnCi8ErQohh0F4CCJ8lnyLQHSb:yadMv6CYrjqnyLQyb
Score

10^/10

persistence
- Modifies system executable filetype association
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Change Default File Association

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy