Overview

overview

10

Static

static

8482915569...61.exe

windows7-x64

10

8482915569...61.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    848291556968732afe98c572c9d282ce9bd317685ed915be5b3ba96872129361

  • Size

    144KB

  • Sample

    221129-v45nhade4s

  • MD5

    fcf4edfbe5a444de203ce1c7135c4cd4

  • SHA1

    c87a83366eb6df6c6bce2d130670cdcdfa99a2ff

  • SHA256

    848291556968732afe98c572c9d282ce9bd317685ed915be5b3ba96872129361

  • SHA512

    695a0f2f0007db4163a9a3400bd0af29c3729215fa3eb6bc187f15ad448533508a7f6100c2a656dc06b8ef58f722eee41452e15c1750e7ea264d718d72ccdeb5

  • SSDEEP

    1536:bss18EsOv5kGVX8rYHZlUWHBdFbouQ1KeCrhYra78rrkqhpMQ/vFiXIVFQnaq9ih:MSRF8rYHZuOBXo1MKks5iXIVFQnrLo

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      848291556968732afe98c572c9d282ce9bd317685ed915be5b3ba96872129361

    • Size

      144KB

    • MD5

      fcf4edfbe5a444de203ce1c7135c4cd4

    • SHA1

      c87a83366eb6df6c6bce2d130670cdcdfa99a2ff

    • SHA256

      848291556968732afe98c572c9d282ce9bd317685ed915be5b3ba96872129361

    • SHA512

      695a0f2f0007db4163a9a3400bd0af29c3729215fa3eb6bc187f15ad448533508a7f6100c2a656dc06b8ef58f722eee41452e15c1750e7ea264d718d72ccdeb5

    • SSDEEP

      1536:bss18EsOv5kGVX8rYHZlUWHBdFbouQ1KeCrhYra78rrkqhpMQ/vFiXIVFQnaq9ih:MSRF8rYHZuOBXo1MKks5iXIVFQnrLo

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks