Overview

overview

8

Static

static

4af4cf798b...99.exe

windows7-x64

8

4af4cf798b...99.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4af4cf798bb8c62b41003346fb1eacc9fa81ddbb3be4180081fd7aad523e2a99

  • Size

    981KB

  • Sample

    221129-pzadxada9z

  • MD5

    227689dad5d92ea88d0952326e8abec6

  • SHA1

    ce27248fae3e22d6fe646706a661440c020bf17f

  • SHA256

    4af4cf798bb8c62b41003346fb1eacc9fa81ddbb3be4180081fd7aad523e2a99

  • SHA512

    c7a09a61c5eadb54fda443c06133602997523ee4479449ea005db8e8e219d23ed95e0967b2c19751c567a5d30451a820c2eb677b6efac49d94f0375ebd3ea0ae

  • SSDEEP

    24576:R79VyVQaHtu8QgS2jonMB5hAMz538xSIPBu+:R7z9aHtuyxonMZMBu+

Score
8/10
persistence

Malware Config

Targets

    • Target

      4af4cf798bb8c62b41003346fb1eacc9fa81ddbb3be4180081fd7aad523e2a99

    • Size

      981KB

    • MD5

      227689dad5d92ea88d0952326e8abec6

    • SHA1

      ce27248fae3e22d6fe646706a661440c020bf17f

    • SHA256

      4af4cf798bb8c62b41003346fb1eacc9fa81ddbb3be4180081fd7aad523e2a99

    • SHA512

      c7a09a61c5eadb54fda443c06133602997523ee4479449ea005db8e8e219d23ed95e0967b2c19751c567a5d30451a820c2eb677b6efac49d94f0375ebd3ea0ae

    • SSDEEP

      24576:R79VyVQaHtu8QgS2jonMB5hAMz538xSIPBu+:R7z9aHtuyxonMZMBu+

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks