Overview

overview

8

Static

static

file.exe

windows7-x64

8

file.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    file.exe

  • Size

    1.8MB

  • Sample

    221223-299yqsce5w

  • MD5

    bac43db85fb7279c44edb5dee47dcfeb

  • SHA1

    426f48491e5e7146ce0e43397c7cc3513a1706e7

  • SHA256

    cafbf35c0d9cf556d2c92086e0145ed092959eb725d6a8134adb9df835ad4a9d

  • SHA512

    c6043fdd816e1922ef0315f0c0d4265f6d381b77061de607506623e3383464b639cb75fe00eb43fe7b3c7f1250bbaa159ece929f8cdf17c1e4974cd9fa54fb87

  • SSDEEP

    24576:M4nXubIQGyxbPV0db268K3q6faXeoubtQo+8YzqNAh3XBQ0FPcQsY8Nl85Xab6s9:Mqe3f6lq6yXeout9+QAPcTYy2Wn

Score
8/10
persistence

Malware Config

Targets

    • Target

      file.exe

    • Size

      1.8MB

    • MD5

      bac43db85fb7279c44edb5dee47dcfeb

    • SHA1

      426f48491e5e7146ce0e43397c7cc3513a1706e7

    • SHA256

      cafbf35c0d9cf556d2c92086e0145ed092959eb725d6a8134adb9df835ad4a9d

    • SHA512

      c6043fdd816e1922ef0315f0c0d4265f6d381b77061de607506623e3383464b639cb75fe00eb43fe7b3c7f1250bbaa159ece929f8cdf17c1e4974cd9fa54fb87

    • SSDEEP

      24576:M4nXubIQGyxbPV0db268K3q6faXeoubtQo+8YzqNAh3XBQ0FPcQsY8Nl85Xab6s9:Mqe3f6lq6yXeout9+QAPcTYy2Wn

    Score
    8/10
    persistence

    • Executes dropped EXE

    • Modifies AppInit DLL entries

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks