Overview

overview

8

Static

static

806ff43593...c8.exe

windows7-x64

8

806ff43593...c8.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    806ff435936638ecbd8a1b1b390c4863d5b69acf8cce5be8e4841af7ccf555c8

  • Size

    986KB

  • Sample

    221127-p9npaahh34

  • MD5

    0bcd02ca4d4976561b6cdfb69fc4d7e7

  • SHA1

    b726daff8e00083b2adda128fc4e191f26923918

  • SHA256

    806ff435936638ecbd8a1b1b390c4863d5b69acf8cce5be8e4841af7ccf555c8

  • SHA512

    17cfd59b7442ce6dff2ca3e3b090e2d63ad2d065e7fdc39d87543f8fad8b08f0bd40542213a18d1ecf556b6afeb5e9f325bba99b1d284fe3217ac6a7a24a4b72

  • SSDEEP

    12288:7RWNcr8oxnkGEIztn9sKJg0ov2BdNHt7IXS0RWHbrbiByKtoeqi:cNBIk9IzFyBvsNN7IiKW7rOBttR

Score
8/10

Malware Config

Targets

    • Target

      806ff435936638ecbd8a1b1b390c4863d5b69acf8cce5be8e4841af7ccf555c8

    • Size

      986KB

    • MD5

      0bcd02ca4d4976561b6cdfb69fc4d7e7

    • SHA1

      b726daff8e00083b2adda128fc4e191f26923918

    • SHA256

      806ff435936638ecbd8a1b1b390c4863d5b69acf8cce5be8e4841af7ccf555c8

    • SHA512

      17cfd59b7442ce6dff2ca3e3b090e2d63ad2d065e7fdc39d87543f8fad8b08f0bd40542213a18d1ecf556b6afeb5e9f325bba99b1d284fe3217ac6a7a24a4b72

    • SSDEEP

      12288:7RWNcr8oxnkGEIztn9sKJg0ov2BdNHt7IXS0RWHbrbiByKtoeqi:cNBIk9IzFyBvsNN7IiKW7rOBttR

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks