1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699 | Triage

Submit
Reports

Overview

overview

8

Static

static

1d8f60ade4...99.exe

windows7-x64

8

1d8f60ade4...99.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699
Size

448KB
Sample

221125-yl7lxsec7w
MD5

186d181cb27c106db3855d7e72a5283c
SHA1

fa8f69727e0e4b06b37e1f2e01d4ea03207aeca8
SHA256

1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699
SHA512

08340e39177b60d66aff40308ae7d27146065e11bb2ed28a588c232a8531f062757b92d05b407b595326609e8fe4403a8299e70d54edcfee718ca9f0cdcd15fa
SSDEEP

6144:9ZuuObR8sVImcyYO7c+KRJy6cIWHeqH0WJ+jxHQp34zZ24pCvwSC1:CV+mzOlOJ4xy3QDpC21

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699.exe

Resource

win7-20221111-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699
- Size
  
  448KB
- MD5
  
  186d181cb27c106db3855d7e72a5283c
- SHA1
  
  fa8f69727e0e4b06b37e1f2e01d4ea03207aeca8
- SHA256
  
  1d8f60ade4c60e92dad7e4708e72a5378a037bb08a26a774eca58fe47447d699
- SHA512
  
  08340e39177b60d66aff40308ae7d27146065e11bb2ed28a588c232a8531f062757b92d05b407b595326609e8fe4403a8299e70d54edcfee718ca9f0cdcd15fa
- SSDEEP
  
  6144:9ZuuObR8sVImcyYO7c+KRJy6cIWHeqH0WJ+jxHQp34zZ24pCvwSC1:CV+mzOlOJ4xy3QDpC21
Score

8^/10

discovery
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy