Overview

overview

8

Static

static

945fcd0aae...df.exe

windows7-x64

8

945fcd0aae...df.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df

  • Size

    92KB

  • Sample

    221206-ynnxlahb57

  • MD5

    393960c2c598a83ef832de5714a17040

  • SHA1

    9feede770e26e04c9a855594be119478d80770c3

  • SHA256

    945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df

  • SHA512

    4d9f050308d3bd11ecfc48f9c213ac5b17d24511a641b9e9e37fed2397ed21ddce11955a77092fbd3c5cfdf3c55987bdd86a4361398c134a24640d0b36e99999

  • SSDEEP

    1536:mFNpf0zlG05TKliZ3lEzLN10CoW5Igq8dClT5gkICL0UPlv:CSJ5uUcRulWNElgkIhUPlv

Score
8/10

Malware Config

Targets

    • Target

      945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df

    • Size

      92KB

    • MD5

      393960c2c598a83ef832de5714a17040

    • SHA1

      9feede770e26e04c9a855594be119478d80770c3

    • SHA256

      945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df

    • SHA512

      4d9f050308d3bd11ecfc48f9c213ac5b17d24511a641b9e9e37fed2397ed21ddce11955a77092fbd3c5cfdf3c55987bdd86a4361398c134a24640d0b36e99999

    • SSDEEP

      1536:mFNpf0zlG05TKliZ3lEzLN10CoW5Igq8dClT5gkICL0UPlv:CSJ5uUcRulWNElgkIhUPlv

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks