Overview

overview

8

Static

static

1

4841a796f4...be.exe

windows7-x64

8

4841a796f4...be.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    4841a796f435915ba73ea67ba7429324856b6484ea7ae922b2e3ea4c8f1ae2be

  • Size

    429KB

  • Sample

    221129-pzt4badb6t

  • MD5

    e9586cb594f28a1f29a2a1f12709986a

  • SHA1

    47c641b6c11ebebae1329e798c32e6c41dd9f1b4

  • SHA256

    4841a796f435915ba73ea67ba7429324856b6484ea7ae922b2e3ea4c8f1ae2be

  • SHA512

    8c86b6eacd75750ff37b627f2a67fca63d683e90af9f669c9ec690a8085455ac4b71738ac0f2fc02c4ad4787e33eabd0958f8e84df4d574f78a823717b19cd8e

  • SSDEEP

    12288:7tobj2q2JvayATWQ9tkj8UGaxWTGp2YpptiB04:7tHq2VgTWokZGYWTGfbtP4

Score
8/10

Malware Config

Targets

    • Target

      4841a796f435915ba73ea67ba7429324856b6484ea7ae922b2e3ea4c8f1ae2be

    • Size

      429KB

    • MD5

      e9586cb594f28a1f29a2a1f12709986a

    • SHA1

      47c641b6c11ebebae1329e798c32e6c41dd9f1b4

    • SHA256

      4841a796f435915ba73ea67ba7429324856b6484ea7ae922b2e3ea4c8f1ae2be

    • SHA512

      8c86b6eacd75750ff37b627f2a67fca63d683e90af9f669c9ec690a8085455ac4b71738ac0f2fc02c4ad4787e33eabd0958f8e84df4d574f78a823717b19cd8e

    • SSDEEP

      12288:7tobj2q2JvayATWQ9tkj8UGaxWTGp2YpptiB04:7tHq2VgTWokZGYWTGfbtP4

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks