Overview

overview

8

Static

static

a3696693f8...02.exe

windows7-x64

8

a3696693f8...02.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a3696693f8b5cb27a1709c3676f871b9e4cfe0651a9230cca71cbb9fe2ac2302

  • Size

    233KB

  • Sample

    221202-b8sd7abf55

  • MD5

    37daaa520f6af5098c018b9aef020289

  • SHA1

    ac6cc932e2a4ab13ce6c1b2c47abc59219c24f2e

  • SHA256

    a3696693f8b5cb27a1709c3676f871b9e4cfe0651a9230cca71cbb9fe2ac2302

  • SHA512

    20b63979d3a3e2f6cb335abbdaca6758bdd164b0c892d5e4eb73e4c6ddb885e993230a6a29044ca81f796b087387bc2f391c7fff40d0fe3793403018e7433201

  • SSDEEP

    3072:Yu5XXqsjBp239o6xfwEMo8rcV7+d6t0vQx5yml+5JQXQMAcD47sJk7sgI:D5KsjLOo6Rd8rcV7Os59lQJQXecDq5

Score
8/10
persistence

Malware Config

Targets

    • Target

      a3696693f8b5cb27a1709c3676f871b9e4cfe0651a9230cca71cbb9fe2ac2302

    • Size

      233KB

    • MD5

      37daaa520f6af5098c018b9aef020289

    • SHA1

      ac6cc932e2a4ab13ce6c1b2c47abc59219c24f2e

    • SHA256

      a3696693f8b5cb27a1709c3676f871b9e4cfe0651a9230cca71cbb9fe2ac2302

    • SHA512

      20b63979d3a3e2f6cb335abbdaca6758bdd164b0c892d5e4eb73e4c6ddb885e993230a6a29044ca81f796b087387bc2f391c7fff40d0fe3793403018e7433201

    • SSDEEP

      3072:Yu5XXqsjBp239o6xfwEMo8rcV7+d6t0vQx5yml+5JQXQMAcD47sJk7sgI:D5KsjLOo6Rd8rcV7Os59lQJQXecDq5

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks