Overview

overview

8

Static

static

1

5ab65583e2...c7.exe

windows7-x64

8

5ab65583e2...c7.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ab65583e2cac61a8344ccb4e05ab22866eb7f830ae18846e4cfb2f8d8ac9dc7

  • Size

    429KB

  • Sample

    221205-whx7zacb56

  • MD5

    bfd1eb0b84f8fd838807cc49e6a37480

  • SHA1

    35c5c1c31b6102a6993464db875ef1d3345c70ff

  • SHA256

    5ab65583e2cac61a8344ccb4e05ab22866eb7f830ae18846e4cfb2f8d8ac9dc7

  • SHA512

    c3d02654be6f44035486a6daaf4d38f0dc41111c0bf2d7948d07a1ac54e32d24279c43df3ea2b80c7ff978eeedf94bb646a36200a8334a31597d040e6969c0be

  • SSDEEP

    6144:EsaocyLC/CC5z6g8bvzxFX/O4eCGPinbQWgWFmx9imcSYx3ZBga3egLGfZkf:EtobwCs+vL2ZCG6nbQWgW13dx3nTelkf

Score
8/10

Malware Config

Targets

    • Target

      5ab65583e2cac61a8344ccb4e05ab22866eb7f830ae18846e4cfb2f8d8ac9dc7

    • Size

      429KB

    • MD5

      bfd1eb0b84f8fd838807cc49e6a37480

    • SHA1

      35c5c1c31b6102a6993464db875ef1d3345c70ff

    • SHA256

      5ab65583e2cac61a8344ccb4e05ab22866eb7f830ae18846e4cfb2f8d8ac9dc7

    • SHA512

      c3d02654be6f44035486a6daaf4d38f0dc41111c0bf2d7948d07a1ac54e32d24279c43df3ea2b80c7ff978eeedf94bb646a36200a8334a31597d040e6969c0be

    • SSDEEP

      6144:EsaocyLC/CC5z6g8bvzxFX/O4eCGPinbQWgWFmx9imcSYx3ZBga3egLGfZkf:EtobwCs+vL2ZCG6nbQWgW13dx3nTelkf

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks