Overview

overview

8

Static

static

1d60df9f97...e6.exe

windows7-x64

8

1d60df9f97...e6.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    1d60df9f97706f33b92fa34b286c02bec9389ff2ef73646c1f95b1cfdac8f3e6

  • Size

    219KB

  • Sample

    221127-p7489ahf98

  • MD5

    cab70856277990b79638926e2c7baf0e

  • SHA1

    0954b55b2635ccfb40615797e21f22b0994d9ae1

  • SHA256

    1d60df9f97706f33b92fa34b286c02bec9389ff2ef73646c1f95b1cfdac8f3e6

  • SHA512

    d328106673405f113d25b1efaa33eea1d48f40b55ea9acb44967ab8f0b6de18a849fb98e5cec5e2ed92fceef4765e146978bd099aed7ed7688a76ff80776601b

  • SSDEEP

    6144:uGEk09b0kj83qSF//KfucgfDZjb04I03cFd:Od83pZ/G7gf904pO

Score
8/10
persistence

Malware Config

Targets

    • Target

      1d60df9f97706f33b92fa34b286c02bec9389ff2ef73646c1f95b1cfdac8f3e6

    • Size

      219KB

    • MD5

      cab70856277990b79638926e2c7baf0e

    • SHA1

      0954b55b2635ccfb40615797e21f22b0994d9ae1

    • SHA256

      1d60df9f97706f33b92fa34b286c02bec9389ff2ef73646c1f95b1cfdac8f3e6

    • SHA512

      d328106673405f113d25b1efaa33eea1d48f40b55ea9acb44967ab8f0b6de18a849fb98e5cec5e2ed92fceef4765e146978bd099aed7ed7688a76ff80776601b

    • SSDEEP

      6144:uGEk09b0kj83qSF//KfucgfDZjb04I03cFd:Od83pZ/G7gf904pO

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks for any installed AV software in registry

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks