Overview

overview

8

Static

static

1048c1cd12...4b.exe

windows7-x64

8

1048c1cd12...4b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1048c1cd122ad949a3803552076e3712354b006c659daa8fea93315d964edd4b

  • Size

    116KB

  • Sample

    221201-zjdrhadb5t

  • MD5

    4e8dee02eb91d7d709d02689b66b1e96

  • SHA1

    e8cb8721ee536f96ac43461240829bcb3f3ebd6e

  • SHA256

    1048c1cd122ad949a3803552076e3712354b006c659daa8fea93315d964edd4b

  • SHA512

    393b91980a8e212a1049d0b1eb0ac5da43923c198e475414e5ee1341fa5f21a348f035eb1375cb1222acebfbc99ca73e72e42aee1d38136b788dd3cb11a4f02c

  • SSDEEP

    3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0h4iu:3bXE9OiTGfhEClq9Gu

Score
8/10

Malware Config

Targets

    • Target

      1048c1cd122ad949a3803552076e3712354b006c659daa8fea93315d964edd4b

    • Size

      116KB

    • MD5

      4e8dee02eb91d7d709d02689b66b1e96

    • SHA1

      e8cb8721ee536f96ac43461240829bcb3f3ebd6e

    • SHA256

      1048c1cd122ad949a3803552076e3712354b006c659daa8fea93315d964edd4b

    • SHA512

      393b91980a8e212a1049d0b1eb0ac5da43923c198e475414e5ee1341fa5f21a348f035eb1375cb1222acebfbc99ca73e72e42aee1d38136b788dd3cb11a4f02c

    • SSDEEP

      3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0h4iu:3bXE9OiTGfhEClq9Gu

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks