Overview

overview

8

Static

static

72c4e84cd5...4a.exe

windows7-x64

8

72c4e84cd5...4a.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72c4e84cd5e822846c61a021fa3e844a.exe

  • Size

    348KB

  • Sample

    230201-tjhgssae96

  • MD5

    72c4e84cd5e822846c61a021fa3e844a

  • SHA1

    da43a7d4b7e31f3934d165079fdfb10e0d0a5ce6

  • SHA256

    c3e63fb19596315605cf56504eff7eef01596f3ef814e8c2938e3f7830093664

  • SHA512

    3d473231701147001d60afbe78deb1d5d923ff0cab7e01507ca1170ad3065495c9767bb9b5907a952675c323d02c0809143c7a177001654ce5867a8ee59ec543

  • SSDEEP

    6144:TYa6SIvPPiON/lpJ0e0BI9qiBFpLoxCHc3v3PovtSAflZ:TYVvSONdpwI0iBHoEHWvPctSS

Score
8/10

Malware Config

Targets

    • Target

      72c4e84cd5e822846c61a021fa3e844a.exe

    • Size

      348KB

    • MD5

      72c4e84cd5e822846c61a021fa3e844a

    • SHA1

      da43a7d4b7e31f3934d165079fdfb10e0d0a5ce6

    • SHA256

      c3e63fb19596315605cf56504eff7eef01596f3ef814e8c2938e3f7830093664

    • SHA512

      3d473231701147001d60afbe78deb1d5d923ff0cab7e01507ca1170ad3065495c9767bb9b5907a952675c323d02c0809143c7a177001654ce5867a8ee59ec543

    • SSDEEP

      6144:TYa6SIvPPiON/lpJ0e0BI9qiBFpLoxCHc3v3PovtSAflZ:TYVvSONdpwI0iBHoEHWvPctSS

    Score
    8/10

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks