Overview

overview

8

Static

static

9078bf7eb9...6e.exe

windows7-x64

8

9078bf7eb9...6e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9078bf7eb911ad769aea709a95e85605e5290c634b67444c6e704b536bea7e6e

  • Size

    150KB

  • Sample

    221203-esmqjsge8y

  • MD5

    31b593dbc0d5377f505caa2997257077

  • SHA1

    e8c8824d6227bc02ef82cbca35ad68ed3a903b40

  • SHA256

    9078bf7eb911ad769aea709a95e85605e5290c634b67444c6e704b536bea7e6e

  • SHA512

    f7194ea6f8f7864c8f9d1444c777555f33408a7b62e877f6bd4093a129a7b00833ac065481562e785ae3db25f729982900ac881e5f2f46f2e773b120a25ab2ea

  • SSDEEP

    3072:i/bB148ipXFuYaMuHlbvHBjN5ovkXU6qHbxhHwCK:iONHJ4lbYkXNobxhQx

Score
8/10

Malware Config

Targets

    • Target

      9078bf7eb911ad769aea709a95e85605e5290c634b67444c6e704b536bea7e6e

    • Size

      150KB

    • MD5

      31b593dbc0d5377f505caa2997257077

    • SHA1

      e8c8824d6227bc02ef82cbca35ad68ed3a903b40

    • SHA256

      9078bf7eb911ad769aea709a95e85605e5290c634b67444c6e704b536bea7e6e

    • SHA512

      f7194ea6f8f7864c8f9d1444c777555f33408a7b62e877f6bd4093a129a7b00833ac065481562e785ae3db25f729982900ac881e5f2f46f2e773b120a25ab2ea

    • SSDEEP

      3072:i/bB148ipXFuYaMuHlbvHBjN5ovkXU6qHbxhHwCK:iONHJ4lbYkXNobxhQx

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks