Overview

overview

8

Static

static

a2f4b5f282...48.exe

windows7-x64

8

a2f4b5f282...48.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a2f4b5f28281faa670f23f3e873ba5faaf9ed311046b1a309955af0a6133de48

  • Size

    376KB

  • Sample

    221201-ad8l9aca3y

  • MD5

    5b3899eaf351a5ba749e00c1dc66c94a

  • SHA1

    7f366c7dd094916d2676ca9b67c0f2368bc4b146

  • SHA256

    a2f4b5f28281faa670f23f3e873ba5faaf9ed311046b1a309955af0a6133de48

  • SHA512

    49650f124959b0191e639901dd765ae754615471d151c175ae0372a620319ba5cffc0ac012e0f3132c54fb00597077dd9e20bb538b3f95f80c5e48137334fd8a

  • SSDEEP

    6144:EbXE9OiTGfhEClq95YtwRuqkbQlLgzCmFJQyJvrrqrVcdBm3bGUHuBBc:QU9XiuiGvkbwLguYYh0ibBL

Score
8/10

Malware Config

Targets

    • Target

      a2f4b5f28281faa670f23f3e873ba5faaf9ed311046b1a309955af0a6133de48

    • Size

      376KB

    • MD5

      5b3899eaf351a5ba749e00c1dc66c94a

    • SHA1

      7f366c7dd094916d2676ca9b67c0f2368bc4b146

    • SHA256

      a2f4b5f28281faa670f23f3e873ba5faaf9ed311046b1a309955af0a6133de48

    • SHA512

      49650f124959b0191e639901dd765ae754615471d151c175ae0372a620319ba5cffc0ac012e0f3132c54fb00597077dd9e20bb538b3f95f80c5e48137334fd8a

    • SSDEEP

      6144:EbXE9OiTGfhEClq95YtwRuqkbQlLgzCmFJQyJvrrqrVcdBm3bGUHuBBc:QU9XiuiGvkbwLguYYh0ibBL

    Score
    8/10

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks