Overview

overview

7

Static

static

1

NBTExplorer.exe

windows10-1703-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NBTExplorer-2.8.0.zip

  • Size

    294KB

  • Sample

    230306-2bhftsef3w

  • MD5

    50a9db91f83c6c09f064385e50760a25

  • SHA1

    278bff3d03f71fc3b3ed84428064747c6715c7d1

  • SHA256

    1bf4c3e56a0e8fba911c6c73cc12fbf105c01367d92dcfb9d20b0f529a666e4b

  • SHA512

    b50e8f89bdd66b79e14103ddd37a8531c2cb0c479d88ca00dcdf940bbaf2fe991cf8eddb96515b87a8b20c8c855e6fe48da5ed836a89fca54ff271d45dcaf9c1

  • SSDEEP

    6144:9EnGlh8pvWHcsu1oIAExj/hnH4cg6QtGzFnXAiEuDZmS:9E6htHcsu1oIn3nYCQgiiEuDB

Score
7/10

Malware Config

Targets

    • Target

      NBTExplorer.exe

    • Size

      419KB

    • MD5

      7d39ad6228157eba3d4872afeaf042b0

    • SHA1

      48af98d067af2417901a29151ff486ff11cf1bfa

    • SHA256

      c5e26b88085ad4aa60a434d2554eaaa4f3c4a37aa26b12f40b70fb0c7f6d6a3f

    • SHA512

      0a730945d2194e3fe82620cd5ae8fdd8bac887b42a08aa85ca1eb06f34591c29b2656fa5c30105cbcb938b299741ec3ee4fb5682b58e9d5ef741b1470e365cf5

    • SSDEEP

      6144:HT3HMf+RNxc8/y7ALvLLLIgjjgL6FlvLLLYgjjgL:HG8

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks