Overview

overview

8

Static

static

b7b3878faf...f2.exe

windows7-x64

8

b7b3878faf...f2.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b7b3878fafdf7ff9c3686863b83e7c4d1ead13135efceaf380c4c820038ed1f2

  • Size

    101KB

  • Sample

    221201-xljdnaad45

  • MD5

    509952b4a55cfff00b0611fb9eccb917

  • SHA1

    b6b877c48a23e5903cf5591683732807d7c6c4d5

  • SHA256

    b7b3878fafdf7ff9c3686863b83e7c4d1ead13135efceaf380c4c820038ed1f2

  • SHA512

    2d16be1906c05a397243b6611e70dea372c089fabcfe0f937f0484b962aa7ff520ff6f109faab13b1fd020915681904e3ff84d650330abac0a612d6f18a36cb0

  • SSDEEP

    1536:Ju5EzWtzKZ6io05SBC/QLWpVnsRemraoWh7kKtEeRKvMIFAu5V+iDfz:JFfQ4/cW7mY/uAKXASIO

Score
8/10
persistence

Malware Config

Targets

    • Target

      b7b3878fafdf7ff9c3686863b83e7c4d1ead13135efceaf380c4c820038ed1f2

    • Size

      101KB

    • MD5

      509952b4a55cfff00b0611fb9eccb917

    • SHA1

      b6b877c48a23e5903cf5591683732807d7c6c4d5

    • SHA256

      b7b3878fafdf7ff9c3686863b83e7c4d1ead13135efceaf380c4c820038ed1f2

    • SHA512

      2d16be1906c05a397243b6611e70dea372c089fabcfe0f937f0484b962aa7ff520ff6f109faab13b1fd020915681904e3ff84d650330abac0a612d6f18a36cb0

    • SSDEEP

      1536:Ju5EzWtzKZ6io05SBC/QLWpVnsRemraoWh7kKtEeRKvMIFAu5V+iDfz:JFfQ4/cW7mY/uAKXASIO

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks