Overview

overview

7

Static

static

6727f65c17...24.exe

windows7-x64

6

6727f65c17...24.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6727f65c17cb0f91d4bd52ba1174df3c16c4dc04fc04ddc420bb1bd8263e9e24

  • Size

    64KB

  • Sample

    221123-xmkm4sad9s

  • MD5

    58b3841e1328852d18057a104a509a60

  • SHA1

    28b38e7e5b51ca5a0a322fe0aa254c4f1fbf0dfb

  • SHA256

    6727f65c17cb0f91d4bd52ba1174df3c16c4dc04fc04ddc420bb1bd8263e9e24

  • SHA512

    ef5e2ca99a5d3ee7d88472387bced54186078fd85026c04a07bb2f7be1395121882b00fc2c0df5c7b02d8e7f35c0da438552b9d3f10e741f381dbb00eec0069a

  • SSDEEP

    1536:khVdbbu4f2k0iM8RiQOcDh7Rg1otiV0BPUfeMebZJ:CG4+NWOcFO0qfeTJ

Score
7/10

Malware Config

Targets

    • Target

      6727f65c17cb0f91d4bd52ba1174df3c16c4dc04fc04ddc420bb1bd8263e9e24

    • Size

      64KB

    • MD5

      58b3841e1328852d18057a104a509a60

    • SHA1

      28b38e7e5b51ca5a0a322fe0aa254c4f1fbf0dfb

    • SHA256

      6727f65c17cb0f91d4bd52ba1174df3c16c4dc04fc04ddc420bb1bd8263e9e24

    • SHA512

      ef5e2ca99a5d3ee7d88472387bced54186078fd85026c04a07bb2f7be1395121882b00fc2c0df5c7b02d8e7f35c0da438552b9d3f10e741f381dbb00eec0069a

    • SSDEEP

      1536:khVdbbu4f2k0iM8RiQOcDh7Rg1otiV0BPUfeMebZJ:CG4+NWOcFO0qfeTJ

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Peripheral Device Discovery

1
T1120

Process Discovery

1
T1057

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks