Overview

overview

7

Static

static

a56c656196...80.exe

windows7-x64

3

a56c656196...80.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a56c656196b508acc9f1f6e3d05dfe7073677b584ac848011292bc0d52ec0280

  • Size

    143KB

  • Sample

    221127-qaywmshh99

  • MD5

    c2102dce408b1af3291ad3cf0310834e

  • SHA1

    bae83ee46f83908d57e7b964b4bf12f52984a196

  • SHA256

    a56c656196b508acc9f1f6e3d05dfe7073677b584ac848011292bc0d52ec0280

  • SHA512

    ebe8ed64bd10b25073fbff11f3e159ac354f0e7227cfa6894542a8a876979dde0e9865db4a0b2b2f756b7c1dea69a5bcab19922eabe848fb67b332d7374d2521

  • SSDEEP

    3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45Dx:pe9IB83ID51

Score
7/10
persistence

Malware Config

Targets

    • Target

      a56c656196b508acc9f1f6e3d05dfe7073677b584ac848011292bc0d52ec0280

    • Size

      143KB

    • MD5

      c2102dce408b1af3291ad3cf0310834e

    • SHA1

      bae83ee46f83908d57e7b964b4bf12f52984a196

    • SHA256

      a56c656196b508acc9f1f6e3d05dfe7073677b584ac848011292bc0d52ec0280

    • SHA512

      ebe8ed64bd10b25073fbff11f3e159ac354f0e7227cfa6894542a8a876979dde0e9865db4a0b2b2f756b7c1dea69a5bcab19922eabe848fb67b332d7374d2521

    • SSDEEP

      3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45Dx:pe9IB83ID51

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks