3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e | Triage

Submit
Reports

Overview

overview

8

Static

static

3f7e30c503...5e.exe

windows7-x64

8

3f7e30c503...5e.exe

windows10-2004-x64

7

Sharing

General

Target

3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e
Size

2.0MB
Sample

221125-nmwwpsgh6t
MD5

56210dd82506f4ed55835af8c6ddc0e0
SHA1

cb8f8d51d903589d80ea523f88f4ba02a1e779da
SHA256

3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e
SHA512

7c209b50669b8e8aaaf3fd58db361f67dad1831c027e62a8412fcfc7208babcb3f10922344a661edd278e76567dfccdbfd86f42bc6456100b59ae6cc047ad59a
SSDEEP

24576:B2KrlpxUxHoFhp/S1AWmQO18C2BwfTs6T22CKRJqNE4u6FOcnDsHspz8vlX9xRBW:BTDxB8CWwfTX3clnBowjmE

Score

8^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e.exe

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e
- Size
  
  2.0MB
- MD5
  
  56210dd82506f4ed55835af8c6ddc0e0
- SHA1
  
  cb8f8d51d903589d80ea523f88f4ba02a1e779da
- SHA256
  
  3f7e30c503657c49f71c7519042b8283b7f12132de09860aa9dbc5afd45c7a5e
- SHA512
  
  7c209b50669b8e8aaaf3fd58db361f67dad1831c027e62a8412fcfc7208babcb3f10922344a661edd278e76567dfccdbfd86f42bc6456100b59ae6cc047ad59a
- SSDEEP
  
  24576:B2KrlpxUxHoFhp/S1AWmQO18C2BwfTs6T22CKRJqNE4u6FOcnDsHspz8vlX9xRBW:BTDxB8CWwfTX3clnBowjmE
Score

8^/10

persistence
- Registers new Print Monitor
  persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy