4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105 | Triage

Submit
Reports

Overview

overview

8

Static

static

4eaac160bc...05.exe

windows7-x64

8

4eaac160bc...05.exe

windows10-2004-x64

8

Sharing

General

Target

4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105
Size

1.3MB
Sample

221125-kye6jsad4z
MD5

6c34e066d7d4641690a4ee919ee30036
SHA1

07bfb47a9c3adb044c3bdbb22e4413a4a2c68710
SHA256

4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105
SHA512

601298d91fd4429622a9f799a801d24961b4be8d4c1ac61a6c44bf7dcb2d76cffb0981c9bec5627792d351ebfa73ba89ebc1ea12c4a47be35fc36a2285dd2b62
SSDEEP

24576:PQ9u98/1Xx+nuiSgGKTPFU21HYYajOaIvuonXW:+ITRdfeO97G

Score

8^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105
- Size
  
  1.3MB
- MD5
  
  6c34e066d7d4641690a4ee919ee30036
- SHA1
  
  07bfb47a9c3adb044c3bdbb22e4413a4a2c68710
- SHA256
  
  4eaac160bc7cacd6ba737410db279c87531532db8b084d66ad8244fc8dc85105
- SHA512
  
  601298d91fd4429622a9f799a801d24961b4be8d4c1ac61a6c44bf7dcb2d76cffb0981c9bec5627792d351ebfa73ba89ebc1ea12c4a47be35fc36a2285dd2b62
- SSDEEP
  
  24576:PQ9u98/1Xx+nuiSgGKTPFU21HYYajOaIvuonXW:+ITRdfeO97G
Score

8^/10

persistence
- Modifies Installed Components in the registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy