795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da | Triage

Submit
Reports

Overview

overview

8

Static

static

795637a924...da.exe

windows7-x64

8

795637a924...da.exe

windows10-2004-x64

7

Sharing

General

Target

795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da
Size

2.0MB
Sample

221125-np26haha8y
MD5

39fce4ee5499bb517b397573898e1af9
SHA1

074eed3d2bbc3559b76069770abb5f3c730ee3d2
SHA256

795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da
SHA512

3a07e26bb09cc3df320f2bb6a419d022e71a6bda2a3f9a33efdc9b83aec00317054e191411bc99883a308640f69e0a0beee31f2747446967553c35129e27932f
SSDEEP

24576:W2KrlpxUxHoFhp/S1AWmQO18C2BwfTs6T22CKRJqNE4u6FOcnDsHspz8vlX9xRB0:WTDxB8CWwfTX3clnBowjh7

Score

8^/10

persistence

Static task

static1

Behavioral task

behavioral1

Sample

795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da.exe

Resource

win7-20220901-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da
- Size
  
  2.0MB
- MD5
  
  39fce4ee5499bb517b397573898e1af9
- SHA1
  
  074eed3d2bbc3559b76069770abb5f3c730ee3d2
- SHA256
  
  795637a92431574d95290ca7109587149309b061a952ff2b153da0fda343e6da
- SHA512
  
  3a07e26bb09cc3df320f2bb6a419d022e71a6bda2a3f9a33efdc9b83aec00317054e191411bc99883a308640f69e0a0beee31f2747446967553c35129e27932f
- SSDEEP
  
  24576:W2KrlpxUxHoFhp/S1AWmQO18C2BwfTs6T22CKRJqNE4u6FOcnDsHspz8vlX9xRB0:WTDxB8CWwfTX3clnBowjh7
Score

8^/10

persistence
- Registers new Print Monitor
  persistence
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy