Overview

overview

8

Static

static

6c6edbecd6...61.exe

windows7-x64

8

6c6edbecd6...61.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6c6edbecd66e9fe3ba8424b375ef42151b84404c14407942f1d4f7bae3905e61

  • Size

    706KB

  • Sample

    221123-zjlr4sga8z

  • MD5

    5c5d223575eda7878bf3953a308833a8

  • SHA1

    445748e04b431022241a90acfbe2346fdafca0ba

  • SHA256

    6c6edbecd66e9fe3ba8424b375ef42151b84404c14407942f1d4f7bae3905e61

  • SHA512

    08f0e0c57359774a11632d1ed660fc50a85176cf5a46465020426a9b9319eb1a6be93ed1dc0aeb62b64ca7ef5e27a4dfffe0e070d8468b5f9552dac4f1a96b6d

  • SSDEEP

    12288:gp/iN/mlVdtvrYeyZJf7kPK+iqBZn+D73iKHeGspglZVQnqw56f0xnjwQa:gpQ/6trYlvYPK+lqD73TeGspoVQCsjA

Score
8/10

Malware Config

Targets

    • Target

      6c6edbecd66e9fe3ba8424b375ef42151b84404c14407942f1d4f7bae3905e61

    • Size

      706KB

    • MD5

      5c5d223575eda7878bf3953a308833a8

    • SHA1

      445748e04b431022241a90acfbe2346fdafca0ba

    • SHA256

      6c6edbecd66e9fe3ba8424b375ef42151b84404c14407942f1d4f7bae3905e61

    • SHA512

      08f0e0c57359774a11632d1ed660fc50a85176cf5a46465020426a9b9319eb1a6be93ed1dc0aeb62b64ca7ef5e27a4dfffe0e070d8468b5f9552dac4f1a96b6d

    • SSDEEP

      12288:gp/iN/mlVdtvrYeyZJf7kPK+iqBZn+D73iKHeGspglZVQnqw56f0xnjwQa:gpQ/6trYlvYPK+lqD73TeGspoVQCsjA

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks