Overview

overview

8

Static

static

ad67e54c1d...5b.exe

windows7-x64

8

ad67e54c1d...5b.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    ad67e54c1da5d7d0308f96119a0d6a3ab28f489d2cb6b6627d24bde04a95625b

  • Size

    7.7MB

  • Sample

    221204-ds52fsfh4y

  • MD5

    4c3a3ec809092a744014a1d768a2c36e

  • SHA1

    658c2e58554b78d1c88fc2248f41c9d51500dc59

  • SHA256

    ad67e54c1da5d7d0308f96119a0d6a3ab28f489d2cb6b6627d24bde04a95625b

  • SHA512

    f9c6fab796501cfd4ccc29b6edcefbeac4ea3560485ecbb6341a6144553679bd530c0519e026cf9fdb11b28ccb020370131cbb42f49c2c57ab38064e192ef0a3

  • SSDEEP

    196608:EWQhlPf3tW5nLHJXPLjxGoCIYFAZi9xSaWZklNI9Lml9TzFo/5OnD:EJhlPPtW5nLHBPnxGoNZimXSNI9Cl9TZ

Score
8/10
persistence

Malware Config

Targets

    • Target

      ad67e54c1da5d7d0308f96119a0d6a3ab28f489d2cb6b6627d24bde04a95625b

    • Size

      7.7MB

    • MD5

      4c3a3ec809092a744014a1d768a2c36e

    • SHA1

      658c2e58554b78d1c88fc2248f41c9d51500dc59

    • SHA256

      ad67e54c1da5d7d0308f96119a0d6a3ab28f489d2cb6b6627d24bde04a95625b

    • SHA512

      f9c6fab796501cfd4ccc29b6edcefbeac4ea3560485ecbb6341a6144553679bd530c0519e026cf9fdb11b28ccb020370131cbb42f49c2c57ab38064e192ef0a3

    • SSDEEP

      196608:EWQhlPf3tW5nLHJXPLjxGoCIYFAZi9xSaWZklNI9Lml9TzFo/5OnD:EJhlPPtW5nLHBPnxGoNZimXSNI9Cl9TZ

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks