Overview

overview

8

Static

static

df34af79af...05.exe

windows7-x64

8

df34af79af...05.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    df34af79af632df2e2cb555af3cdbeca8a3a652d02d2e39379b7abc755592a05

  • Size

    229KB

  • Sample

    221204-dqj17sff6z

  • MD5

    ff038a345e5419e4039e7de6bd94c0f6

  • SHA1

    690e8d801d9bf839352c5dc37f9a30fb7378db01

  • SHA256

    df34af79af632df2e2cb555af3cdbeca8a3a652d02d2e39379b7abc755592a05

  • SHA512

    e2cb72316dd72caf1dadcfde7a20cf41251d26d248f6fc9a9a57c57a6308cd23329e63a092defe445bc0c6da63d8897f63628ec82852a2fa5ac07ac14b2d6eb8

  • SSDEEP

    6144:AtBAo+4jixlUGtDU6XzDdDRPUY5RLiiDkJWViZxGAhw:uWx+GZUkv7cgRLTD+ZoAK

Score
8/10

Malware Config

Targets

    • Target

      df34af79af632df2e2cb555af3cdbeca8a3a652d02d2e39379b7abc755592a05

    • Size

      229KB

    • MD5

      ff038a345e5419e4039e7de6bd94c0f6

    • SHA1

      690e8d801d9bf839352c5dc37f9a30fb7378db01

    • SHA256

      df34af79af632df2e2cb555af3cdbeca8a3a652d02d2e39379b7abc755592a05

    • SHA512

      e2cb72316dd72caf1dadcfde7a20cf41251d26d248f6fc9a9a57c57a6308cd23329e63a092defe445bc0c6da63d8897f63628ec82852a2fa5ac07ac14b2d6eb8

    • SSDEEP

      6144:AtBAo+4jixlUGtDU6XzDdDRPUY5RLiiDkJWViZxGAhw:uWx+GZUkv7cgRLTD+ZoAK

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks