Overview

overview

8

Static

static

LoaderVIP.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LoaderVIP.exe

  • Size

    16KB

  • Sample

    230202-hbtpbahb8x

  • MD5

    7bdbf5e74eae53a1d439cc1fc2dceaf7

  • SHA1

    4e572d08788dc560b89f2c1bf9ed2176ff2df14c

  • SHA256

    5995b4547bcb85e0c1d9e34ef51696ebad19e11386a79f25b5e65cdd0af91288

  • SHA512

    e1aad60e9d1eb2f02a6af884c898fcc21882e5a028b0decdedec0a5b83e2675a7b7523a8d87bc6e73c3f300d3726b4403dec598c73d61ec9f26fbffc86e207f4

  • SSDEEP

    384:4b9izQh5DTexb93lnYuTNQqME33DhSHkON/GlfgOb5:oAxb93lYuptME33VSEONulfgO

Score
8/10

Malware Config

Targets

    • Target

      LoaderVIP.exe

    • Size

      16KB

    • MD5

      7bdbf5e74eae53a1d439cc1fc2dceaf7

    • SHA1

      4e572d08788dc560b89f2c1bf9ed2176ff2df14c

    • SHA256

      5995b4547bcb85e0c1d9e34ef51696ebad19e11386a79f25b5e65cdd0af91288

    • SHA512

      e1aad60e9d1eb2f02a6af884c898fcc21882e5a028b0decdedec0a5b83e2675a7b7523a8d87bc6e73c3f300d3726b4403dec598c73d61ec9f26fbffc86e207f4

    • SSDEEP

      384:4b9izQh5DTexb93lnYuTNQqME33DhSHkON/GlfgOb5:oAxb93lYuptME33VSEONulfgO

    Score
    8/10

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks