Overview

overview

8

Static

static

cadf323c8b...4c.exe

windows7-x64

8

cadf323c8b...4c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cadf323c8b3cb138c112eca2d1f4d138ebecd9af7f0a9c1b99eabd6c18dcb44c

  • Size

    239KB

  • Sample

    221129-v2bmmsad26

  • MD5

    fcfaa118406d55f45a8ed76290cd295a

  • SHA1

    5f23200c2c87f341a45664bea4805debaa250ef5

  • SHA256

    cadf323c8b3cb138c112eca2d1f4d138ebecd9af7f0a9c1b99eabd6c18dcb44c

  • SHA512

    c35aeadb9a522e32ece96ff9ad92af5cdfab8e37a9de5433223afd5c2abc377e59312a85ca1f1af328777d120e44a2c318c5941c0a97e319a77cc15cdf1d3aa7

  • SSDEEP

    3072:MBAp5XhKpN4eOyVTGfhEClj8jTk+0hYoO/MgjqEWBb+Cgw5CKHy:7bXE9OiTGfhEClq95/MgVJJUy

Score
8/10
discovery

Malware Config

Targets

    • Target

      cadf323c8b3cb138c112eca2d1f4d138ebecd9af7f0a9c1b99eabd6c18dcb44c

    • Size

      239KB

    • MD5

      fcfaa118406d55f45a8ed76290cd295a

    • SHA1

      5f23200c2c87f341a45664bea4805debaa250ef5

    • SHA256

      cadf323c8b3cb138c112eca2d1f4d138ebecd9af7f0a9c1b99eabd6c18dcb44c

    • SHA512

      c35aeadb9a522e32ece96ff9ad92af5cdfab8e37a9de5433223afd5c2abc377e59312a85ca1f1af328777d120e44a2c318c5941c0a97e319a77cc15cdf1d3aa7

    • SSDEEP

      3072:MBAp5XhKpN4eOyVTGfhEClj8jTk+0hYoO/MgjqEWBb+Cgw5CKHy:7bXE9OiTGfhEClq95/MgVJJUy

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks