Overview

overview

8

Static

static

b9385d6afb...c9.exe

windows7-x64

1

b9385d6afb...c9.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b9385d6afb0c48e79f28d0ec061b429efce9eb058ba4e4ac9d8a75994d8fc6c9

  • Size

    140KB

  • Sample

    221202-yyzf3sad75

  • MD5

    5a3ad1d47e14f387f3682e4c7518c765

  • SHA1

    b2d07db3330a10ee4f398a57d01aa031925a5ba8

  • SHA256

    b9385d6afb0c48e79f28d0ec061b429efce9eb058ba4e4ac9d8a75994d8fc6c9

  • SHA512

    2b71057986eafecfeb80e52ba4660c1172d9bdaff872e632211d6f943e31b82b7a3ebb32197e60cf0e8f4ce930471a24f62d70e45d09ca074855dc8957605534

  • SSDEEP

    1536:nnMg2OVLjlevyaRLBnLuRgiaUxRIxecePKH5nKLV+I:M0LpeTLlamiaUxRIxecePKQJ

Score
8/10
evasion

Malware Config

Targets

    • Target

      b9385d6afb0c48e79f28d0ec061b429efce9eb058ba4e4ac9d8a75994d8fc6c9

    • Size

      140KB

    • MD5

      5a3ad1d47e14f387f3682e4c7518c765

    • SHA1

      b2d07db3330a10ee4f398a57d01aa031925a5ba8

    • SHA256

      b9385d6afb0c48e79f28d0ec061b429efce9eb058ba4e4ac9d8a75994d8fc6c9

    • SHA512

      2b71057986eafecfeb80e52ba4660c1172d9bdaff872e632211d6f943e31b82b7a3ebb32197e60cf0e8f4ce930471a24f62d70e45d09ca074855dc8957605534

    • SSDEEP

      1536:nnMg2OVLjlevyaRLBnLuRgiaUxRIxecePKH5nKLV+I:M0LpeTLlamiaUxRIxecePKQJ

    Score
    8/10
    evasion

    • Executes dropped EXE

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks