Overview

overview

8

Static

static

f07321d518...38.exe

windows7-x64

8

f07321d518...38.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f07321d518899920642ef12d783f600093e461afcc11c37413d3046cb53f1e38

  • Size

    66KB

  • Sample

    221123-xw7h8sbc3s

  • MD5

    582b1b120cb451dd3473116f6f7fc5b0

  • SHA1

    f46b118610d6f0aa91f06512e117048032bb94ca

  • SHA256

    f07321d518899920642ef12d783f600093e461afcc11c37413d3046cb53f1e38

  • SHA512

    4003dae9a7c30c2044fce07d0b5607b396b4a6a21c184fb2a1a8697886fbc988dc0aa79f3cd2939e7855ad32e36ec4fb314c641729b0226b4c5d153472482151

  • SSDEEP

    1536:sr+Fum5LMI+WTJjcXnXMcpm/zOxJXKJwa:sr+Fu2II+HXXMcI/AKJd

Score
8/10

Malware Config

Targets

    • Target

      f07321d518899920642ef12d783f600093e461afcc11c37413d3046cb53f1e38

    • Size

      66KB

    • MD5

      582b1b120cb451dd3473116f6f7fc5b0

    • SHA1

      f46b118610d6f0aa91f06512e117048032bb94ca

    • SHA256

      f07321d518899920642ef12d783f600093e461afcc11c37413d3046cb53f1e38

    • SHA512

      4003dae9a7c30c2044fce07d0b5607b396b4a6a21c184fb2a1a8697886fbc988dc0aa79f3cd2939e7855ad32e36ec4fb314c641729b0226b4c5d153472482151

    • SSDEEP

      1536:sr+Fum5LMI+WTJjcXnXMcpm/zOxJXKJwa:sr+Fu2II+HXXMcI/AKJd

    Score
    8/10

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks