Overview

overview

8

Static

static

2432889bed...76.exe

windows7-x64

8

2432889bed...76.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    2432889bed6a165954bd051bc6cc48341c305cb46200fb735251e71b57314c76

  • Size

    240KB

  • Sample

    221130-3p6agsfb83

  • MD5

    3e5c28ccd2a8439cdeadfcae0ef73e60

  • SHA1

    94b72c32f2613ad3b87ded90154eb26480e18eeb

  • SHA256

    2432889bed6a165954bd051bc6cc48341c305cb46200fb735251e71b57314c76

  • SHA512

    a3c54327c50768a28bb1b3fc39c9199423cb9853f5e9bca6cce70950c4e5633210bcd633ed0aab537ecc8fbb092d3b02fb8459db99b37a62455fd8bf2f165780

  • SSDEEP

    3072:qVz8NPIGuuPuF2BD47NFPfK6xjcUf6eBHTBfb82HLhFcn3cK5keGTE7Gax:qF83Mw47zj6AHTBj8263vNKm

Score
8/10
persistence

Malware Config

Targets

    • Target

      2432889bed6a165954bd051bc6cc48341c305cb46200fb735251e71b57314c76

    • Size

      240KB

    • MD5

      3e5c28ccd2a8439cdeadfcae0ef73e60

    • SHA1

      94b72c32f2613ad3b87ded90154eb26480e18eeb

    • SHA256

      2432889bed6a165954bd051bc6cc48341c305cb46200fb735251e71b57314c76

    • SHA512

      a3c54327c50768a28bb1b3fc39c9199423cb9853f5e9bca6cce70950c4e5633210bcd633ed0aab537ecc8fbb092d3b02fb8459db99b37a62455fd8bf2f165780

    • SSDEEP

      3072:qVz8NPIGuuPuF2BD47NFPfK6xjcUf6eBHTBfb82HLhFcn3cK5keGTE7Gax:qF83Mw47zj6AHTBj8263vNKm

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks