44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647 | Triage

Submit
Reports

Overview

overview

8

Static

static

44c3e2c2d1...47.exe

windows7-x64

8

44c3e2c2d1...47.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647
Size

241KB
Sample

221127-krdddadd54
MD5

294a9a5ca3fcfe7c87385a0c037842ad
SHA1

11768025773247d57b118adeb2376c403c57f319
SHA256

44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647
SHA512

c6043c41f58062e7f0c2bc2f6620e176331ba49575f3a98847fd1d3bb60005c77ee32c528fc03755174045c22c2df42817d0e9ac72e3fb68d75ab3e19318a616
SSDEEP

6144:JZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876HvXnXCbW:XXmwRo+mv8QD4+0N46HvC6

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647.exe

Resource

win7-20221111-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647
- Size
  
  241KB
- MD5
  
  294a9a5ca3fcfe7c87385a0c037842ad
- SHA1
  
  11768025773247d57b118adeb2376c403c57f319
- SHA256
  
  44c3e2c2d16f7c3dba2eec7581305a379d5e431a1e8df76d6e1c5542cd053647
- SHA512
  
  c6043c41f58062e7f0c2bc2f6620e176331ba49575f3a98847fd1d3bb60005c77ee32c528fc03755174045c22c2df42817d0e9ac72e3fb68d75ab3e19318a616
- SSDEEP
  
  6144:JZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876HvXnXCbW:XXmwRo+mv8QD4+0N46HvC6
Score

8^/10

discovery
- Blocklisted process makes network request
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy