8b3bdad2dd69a75334ed5434f78dff3dbcc9d9654bdc696be84e75ce69d19a6a | Triage

Submit
Reports

Overview

overview

7

Static

static

1

2e53a6710f...c4.exe

windows7-x64

7

2e53a6710f...c4.exe

windows10-2004-x64

7

Sharing

General

Target

5b45640a3bd4fdc32df75aa462f5a167.bin
Size

47KB
Sample

230308-bpad9scg5z
MD5

e1f0f8f3fe28d6aa4c733a400951e5e0
SHA1

2ccbb2f958beda22377610cbde8eaeff03b7f7ec
SHA256

8b3bdad2dd69a75334ed5434f78dff3dbcc9d9654bdc696be84e75ce69d19a6a
SHA512

a87f8ad851d89fb6ef046e8fde6b2a9c0ce70d832683b5295510721c593e205fc01cf1d70e2bac427914b618f94431fa0b066818258833d94cc7d7bfc4871a95
SSDEEP

768:AHKVDAbGnXk+ZLXGVm3FEh2BASR9qSLWIe17INutD6p5xxNYppRo5BJee9A+7Ux4:3VDMGxZLXGVDhUAsPWcppROSJee9A+64

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

2e53a6710f04dd84cfd3ac1874a2a61e690568405f192e7cbf8a4df12da334c4.exe

Resource

win7-20230220-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

2e53a6710f04dd84cfd3ac1874a2a61e690568405f192e7cbf8a4df12da334c4.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  2e53a6710f04dd84cfd3ac1874a2a61e690568405f192e7cbf8a4df12da334c4.exe
- Size
  
  111KB
- MD5
  
  5b45640a3bd4fdc32df75aa462f5a167
- SHA1
  
  fdc2b61ca7b5c31ba48155d364b8797990e2eaee
- SHA256
  
  2e53a6710f04dd84cfd3ac1874a2a61e690568405f192e7cbf8a4df12da334c4
- SHA512
  
  3f3e86e14f0a09bafd374da2417452bc69741e14c2d4e1a4b208a94e1a2c9cd3a0c4336ec23e9b046bcad051aac8d6f05d4477cb516c3700b27f21e023106963
- SSDEEP
  
  3072:lb4MOYUuQaS+T8sv8X31OjqOjNhOYRbxqH8QW2zCrAZuRs5:wYUuQaS+T8sv8X31OXN1bgl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy