Overview

overview

7

Static

static

d83b3cf82c...bf.exe

windows7-x64

7

d83b3cf82c...bf.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d83b3cf82cbb893678e32685a9778dd9a8d21d5cae176e6a461b2dafd9a4bdbf

  • Size

    294KB

  • Sample

    221123-zyt22aea98

  • MD5

    45f743a18032be7df1ac6a73e8a47e11

  • SHA1

    b67a4d0229070df73b69a0efc0b7b3e669c66a33

  • SHA256

    d83b3cf82cbb893678e32685a9778dd9a8d21d5cae176e6a461b2dafd9a4bdbf

  • SHA512

    1186db03cc4574be255251205d73337e9f5b43508c80b425086ee5a6450ecc1db154256c1359de83416cb69d2ab433fe0efbacbcfdc42f1a87f6991ecf124a14

  • SSDEEP

    6144:lHZL/SIftEJ/s4Kz8uv10tiuLSgkkx+xXVyLoCWam:DL/SIfYZgv1oLSpenLdm

Score
7/10
persistence

Malware Config

Targets

    • Target

      d83b3cf82cbb893678e32685a9778dd9a8d21d5cae176e6a461b2dafd9a4bdbf

    • Size

      294KB

    • MD5

      45f743a18032be7df1ac6a73e8a47e11

    • SHA1

      b67a4d0229070df73b69a0efc0b7b3e669c66a33

    • SHA256

      d83b3cf82cbb893678e32685a9778dd9a8d21d5cae176e6a461b2dafd9a4bdbf

    • SHA512

      1186db03cc4574be255251205d73337e9f5b43508c80b425086ee5a6450ecc1db154256c1359de83416cb69d2ab433fe0efbacbcfdc42f1a87f6991ecf124a14

    • SSDEEP

      6144:lHZL/SIftEJ/s4Kz8uv10tiuLSgkkx+xXVyLoCWam:DL/SIfYZgv1oLSpenLdm

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks