Overview

overview

8

Static

static

e61a819cd7...28.exe

windows7-x64

8

e61a819cd7...28.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    e61a819cd7473dbe776cb25c19969eb12c8c4556d955da195ddf586280a52228

  • Size

    227KB

  • Sample

    221127-jpblbsed5x

  • MD5

    b15cb2e022da92e746204ccb40f1a272

  • SHA1

    7e5ce68102d90eb19f693ba1ef10dc065c342ee0

  • SHA256

    e61a819cd7473dbe776cb25c19969eb12c8c4556d955da195ddf586280a52228

  • SHA512

    7bde34add433af3c8a1a4487251bdb728e8f5e8ed6326e850eac1b1af4501e6e2d75e3821cc0c369099038f35a13b19350eec0cb7088eac771c5a123e82d4a18

  • SSDEEP

    3072:Ht5ztq/xeIhOmYnJcawmSDA7jwOAIZyNiYLUETAB5EKJQabgH9acpr4kdQ9XWaIr:XwOBsr0fwbI8imFkBaKncHppZQ9fJc3

Score
8/10
persistence

Malware Config

Targets

    • Target

      e61a819cd7473dbe776cb25c19969eb12c8c4556d955da195ddf586280a52228

    • Size

      227KB

    • MD5

      b15cb2e022da92e746204ccb40f1a272

    • SHA1

      7e5ce68102d90eb19f693ba1ef10dc065c342ee0

    • SHA256

      e61a819cd7473dbe776cb25c19969eb12c8c4556d955da195ddf586280a52228

    • SHA512

      7bde34add433af3c8a1a4487251bdb728e8f5e8ed6326e850eac1b1af4501e6e2d75e3821cc0c369099038f35a13b19350eec0cb7088eac771c5a123e82d4a18

    • SSDEEP

      3072:Ht5ztq/xeIhOmYnJcawmSDA7jwOAIZyNiYLUETAB5EKJQabgH9acpr4kdQ9XWaIr:XwOBsr0fwbI8imFkBaKncHppZQ9fJc3

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks for any installed AV software in registry

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks