Overview

overview

8

Static

static

VESSELDESCRIPTION.exe

windows7-x64

8

VESSELDESCRIPTION.exe

windows10-2004-x64

8

Resubmissions

01-02-2023 15:02

230201-see1facb4t 8

01-02-2023 14:57

230201-sblzksab83 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VESSELDESCRIPTION.exe

  • Size

    285KB

  • Sample

    230201-see1facb4t

  • MD5

    88db12740d9e2af8f4df9cf8d687cdf1

  • SHA1

    85cd66a6f407c91d27424090ea2c64510baddad7

  • SHA256

    241925239f1af140450b6ab0345e8fd02b2e85d43ef557834caac5effe022645

  • SHA512

    b7fa74685163dcf72983d2dafd53665446a0abb7ec33a0a5e4aedf0a21f1afed024489ef976d3a29e2ea1b70de6bb8cf0c7d9b05d37ecda71c19e70d8b8f764f

  • SSDEEP

    6144:vYa69ByVwapsdpzrMPaR3Q9H37vZoCWwm1aMj2efs1nmTF:vYHOVOXh1ALDWwSj2efsm5

Score
8/10

Malware Config

Targets

    • Target

      VESSELDESCRIPTION.exe

    • Size

      285KB

    • MD5

      88db12740d9e2af8f4df9cf8d687cdf1

    • SHA1

      85cd66a6f407c91d27424090ea2c64510baddad7

    • SHA256

      241925239f1af140450b6ab0345e8fd02b2e85d43ef557834caac5effe022645

    • SHA512

      b7fa74685163dcf72983d2dafd53665446a0abb7ec33a0a5e4aedf0a21f1afed024489ef976d3a29e2ea1b70de6bb8cf0c7d9b05d37ecda71c19e70d8b8f764f

    • SSDEEP

      6144:vYa69ByVwapsdpzrMPaR3Q9H37vZoCWwm1aMj2efs1nmTF:vYHOVOXh1ALDWwSj2efsm5

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks