Overview

overview

8

Static

static

8235712093...5d.exe

windows7-x64

8

8235712093...5d.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8235712093c3d4d8e6ace925ce65654bb6d68673cfcfb8f3808f40b67bbdf65d

  • Size

    168KB

  • Sample

    221130-s3wcbsfe6t

  • MD5

    8e4be2eb83b42225b500ca568d023e9a

  • SHA1

    8ea1f7cd198e9d6c6567444fffd1f0af0f1753f3

  • SHA256

    8235712093c3d4d8e6ace925ce65654bb6d68673cfcfb8f3808f40b67bbdf65d

  • SHA512

    c809d76695b8aad93e6785af453d13ae8ad6f19af175efd134685538c41cab069c8b92ee1b3a210fe31efea067639e68f1a925527cdbd4fedfdb1069eb33c2b3

  • SSDEEP

    3072:5v9cbTFhDHGrwpfwtTsZVQ3zY54tyeh8ZtkEqXJzRzaLrt:5Fcbhhb3p8TAQ3zY54tpqZtkEqZc

Score
8/10
evasion

Malware Config

Targets

    • Target

      8235712093c3d4d8e6ace925ce65654bb6d68673cfcfb8f3808f40b67bbdf65d

    • Size

      168KB

    • MD5

      8e4be2eb83b42225b500ca568d023e9a

    • SHA1

      8ea1f7cd198e9d6c6567444fffd1f0af0f1753f3

    • SHA256

      8235712093c3d4d8e6ace925ce65654bb6d68673cfcfb8f3808f40b67bbdf65d

    • SHA512

      c809d76695b8aad93e6785af453d13ae8ad6f19af175efd134685538c41cab069c8b92ee1b3a210fe31efea067639e68f1a925527cdbd4fedfdb1069eb33c2b3

    • SSDEEP

      3072:5v9cbTFhDHGrwpfwtTsZVQ3zY54tyeh8ZtkEqXJzRzaLrt:5Fcbhhb3p8TAQ3zY54tpqZtkEqZc

    Score
    8/10
    evasion

    • Stops running service(s)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

1
T1031

Privilege Escalation

Defense Evasion

Impair Defenses

1
T1562

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Service Stop

1
T1489

Tasks