Overview

overview

8

Static

static

155b556f03...e1.exe

windows7-x64

8

155b556f03...e1.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    155b556f03f6be9cd752e1876a59a3fe48104cb91932dd3c0ee59a99233777e1

  • Size

    239KB

  • Sample

    221201-zxntmaed9z

  • MD5

    7dfbd9ae336352baac5dde6701506d5d

  • SHA1

    e17e2455f0f85835cb541fa9a27257c699b28c9b

  • SHA256

    155b556f03f6be9cd752e1876a59a3fe48104cb91932dd3c0ee59a99233777e1

  • SHA512

    7387a6518bb6390f5a9dfa8008084c776d805a87d6e4f97ed6101fe3d2e157735471c994794a668e2bb056abf47c33398a7329e7f33930db9430c4ecd9ba4c32

  • SSDEEP

    3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hFuCLox36n+Cgw5CKH6:PbXE9OiTGfhEClq9TZlJJU6

Score
8/10
discovery

Malware Config

Targets

    • Target

      155b556f03f6be9cd752e1876a59a3fe48104cb91932dd3c0ee59a99233777e1

    • Size

      239KB

    • MD5

      7dfbd9ae336352baac5dde6701506d5d

    • SHA1

      e17e2455f0f85835cb541fa9a27257c699b28c9b

    • SHA256

      155b556f03f6be9cd752e1876a59a3fe48104cb91932dd3c0ee59a99233777e1

    • SHA512

      7387a6518bb6390f5a9dfa8008084c776d805a87d6e4f97ed6101fe3d2e157735471c994794a668e2bb056abf47c33398a7329e7f33930db9430c4ecd9ba4c32

    • SSDEEP

      3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hFuCLox36n+Cgw5CKH6:PbXE9OiTGfhEClq9TZlJJU6

    Score
    8/10
    discovery

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks