Overview

overview

8

Static

static

16d11d38d2...00.exe

windows7-x64

8

16d11d38d2...00.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16d11d38d21891939f768acbdb6bf9326ed69100

  • Size

    354KB

  • Sample

    230113-bpcjmagf3y

  • MD5

    06bcb9616a54e2762e3ff8ffb3ac7c83

  • SHA1

    16d11d38d21891939f768acbdb6bf9326ed69100

  • SHA256

    7c530b0b55443db7e966b7420b27fb6ed79f8e70fc349fb00087f6d1e4b7cc25

  • SHA512

    b4f9b869e420ba6ae7e54462556a2da4379d9b5d8b0fe8beb4e22668abb35e4070be22bc0d272a287153bc0328c18962e750037d8f086284c438021cfcd21825

  • SSDEEP

    6144:kYa6TmPuL+3v6pfqe10A0MJHCwOTiRAf1yWwBYUig51cF96EQ1:kYBR+3MCeu0dy4Af1yWeYUigDcF96EQ1

Score
8/10

Malware Config

Targets

    • Target

      16d11d38d21891939f768acbdb6bf9326ed69100

    • Size

      354KB

    • MD5

      06bcb9616a54e2762e3ff8ffb3ac7c83

    • SHA1

      16d11d38d21891939f768acbdb6bf9326ed69100

    • SHA256

      7c530b0b55443db7e966b7420b27fb6ed79f8e70fc349fb00087f6d1e4b7cc25

    • SHA512

      b4f9b869e420ba6ae7e54462556a2da4379d9b5d8b0fe8beb4e22668abb35e4070be22bc0d272a287153bc0328c18962e750037d8f086284c438021cfcd21825

    • SSDEEP

      6144:kYa6TmPuL+3v6pfqe10A0MJHCwOTiRAf1yWwBYUig51cF96EQ1:kYBR+3MCeu0dy4Af1yWeYUigDcF96EQ1

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks