Overview

overview

8

Static

static

c7dc37f5c4...fa.exe

windows7-x64

8

c7dc37f5c4...fa.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c7dc37f5c4f114e5bd38e9ea24be4b5e6c531f26c5195d599f07b281941454fa

  • Size

    209KB

  • Sample

    221203-g6vpesfc4y

  • MD5

    380551df606f98156ef8bb441307986d

  • SHA1

    758fc286b0991a0b9593670a4c05359dca4db256

  • SHA256

    c7dc37f5c4f114e5bd38e9ea24be4b5e6c531f26c5195d599f07b281941454fa

  • SHA512

    49432a38222b32a773b51fe4ceebfb82952341ba473a4da00f108efdf20f2f6aad738e89f3ed8a689b22b2cd84b02888b67f26a9b36f8f0d244f9a0fc33b5b3d

  • SSDEEP

    6144:PGFWiwdyS3VuP8ZpKoZyAWbA/Ubj5EbHT1oqiOqPle9m:3iwdy2IopKyW1MT1oqi7Sm

Score
8/10

Malware Config

Targets

    • Target

      c7dc37f5c4f114e5bd38e9ea24be4b5e6c531f26c5195d599f07b281941454fa

    • Size

      209KB

    • MD5

      380551df606f98156ef8bb441307986d

    • SHA1

      758fc286b0991a0b9593670a4c05359dca4db256

    • SHA256

      c7dc37f5c4f114e5bd38e9ea24be4b5e6c531f26c5195d599f07b281941454fa

    • SHA512

      49432a38222b32a773b51fe4ceebfb82952341ba473a4da00f108efdf20f2f6aad738e89f3ed8a689b22b2cd84b02888b67f26a9b36f8f0d244f9a0fc33b5b3d

    • SSDEEP

      6144:PGFWiwdyS3VuP8ZpKoZyAWbA/Ubj5EbHT1oqiOqPle9m:3iwdy2IopKyW1MT1oqi7Sm

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks