Overview

overview

8

Static

static

42882d55d8...ae.exe

windows7-x64

8

42882d55d8...ae.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    42882d55d8f99671cd98a1f8058c04e85a94ad170bcac371b33585021ab7adae

  • Size

    241KB

  • Sample

    221125-pnwsrsbf4y

  • MD5

    d518edc415fdc628deb463857a0f8ec9

  • SHA1

    c22c4f3ebaa5b023ca7e2de9dfda7ad01dc0c6eb

  • SHA256

    42882d55d8f99671cd98a1f8058c04e85a94ad170bcac371b33585021ab7adae

  • SHA512

    2c3c10973c849b9e011d6db46b18d11f2f2eb397288cfc3dd334b9fd324e855a8c55052d5107c8e373c645d32ddc7e29d1185096d71a175ea5e44edeaa5f96e7

  • SSDEEP

    6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxps3KwtG+AS:lXmwRo+mv8QD4+0N46NKxps3ntG+AS

Score
8/10
discovery

Malware Config

Targets

    • Target

      42882d55d8f99671cd98a1f8058c04e85a94ad170bcac371b33585021ab7adae

    • Size

      241KB

    • MD5

      d518edc415fdc628deb463857a0f8ec9

    • SHA1

      c22c4f3ebaa5b023ca7e2de9dfda7ad01dc0c6eb

    • SHA256

      42882d55d8f99671cd98a1f8058c04e85a94ad170bcac371b33585021ab7adae

    • SHA512

      2c3c10973c849b9e011d6db46b18d11f2f2eb397288cfc3dd334b9fd324e855a8c55052d5107c8e373c645d32ddc7e29d1185096d71a175ea5e44edeaa5f96e7

    • SSDEEP

      6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxps3KwtG+AS:lXmwRo+mv8QD4+0N46NKxps3ntG+AS

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks