Overview

overview

8

Static

static

307ac37920...dd.exe

windows7-x64

8

307ac37920...dd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    307ac37920c08b5ba3512e02ddc5af551c73fc5e8aae03f73dcf07585ed807dd

  • Size

    241KB

  • Sample

    221125-pnv68sgd87

  • MD5

    7f367fcedcfc9f44dc323af26cd2c7a3

  • SHA1

    b92fe64816cca79ed3147f16e6a0819c12da48f1

  • SHA256

    307ac37920c08b5ba3512e02ddc5af551c73fc5e8aae03f73dcf07585ed807dd

  • SHA512

    5eaea82b5e401d022e43e2c3bb29f3527042e9c8a9e500aefcf616069a8e22d0bda7ab41962acec9de1655bce6cc8eed26633ec0f16b80f8539a69daf82ec539

  • SSDEEP

    6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxjA7RVpsrKkE/:lXmwRo+mv8QD4+0N46NKxEpMnE/

Score
8/10
discovery

Malware Config

Targets

    • Target

      307ac37920c08b5ba3512e02ddc5af551c73fc5e8aae03f73dcf07585ed807dd

    • Size

      241KB

    • MD5

      7f367fcedcfc9f44dc323af26cd2c7a3

    • SHA1

      b92fe64816cca79ed3147f16e6a0819c12da48f1

    • SHA256

      307ac37920c08b5ba3512e02ddc5af551c73fc5e8aae03f73dcf07585ed807dd

    • SHA512

      5eaea82b5e401d022e43e2c3bb29f3527042e9c8a9e500aefcf616069a8e22d0bda7ab41962acec9de1655bce6cc8eed26633ec0f16b80f8539a69daf82ec539

    • SSDEEP

      6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxjA7RVpsrKkE/:lXmwRo+mv8QD4+0N46NKxEpMnE/

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks