Overview

overview

8

Static

static

1

be23ae2167...5.html

windows10-2004-x64

8

Resubmissions

28/03/2023, 12:55

230328-p55f8scg4s 8

28/03/2023, 12:51

230328-p3rglacg3t 8

10/03/2023, 16:32

230310-t11ppsee66 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9483912420.zip

  • Size

    92KB

  • Sample

    230328-p55f8scg4s

  • MD5

    3dcc84f88d9167e43e1761a0e19bd93e

  • SHA1

    42f02a2c513a0f3f3b8f5fd54419ea7b810beca5

  • SHA256

    17f128f5d68da090df8aca741ed547e838da74fdb9cc5182462cbc371cc21dec

  • SHA512

    9bf9506038e086545baf3ec903f01d36b69ccb2cfe27d93efa3d3e171166f272aa286323e69919d748a439404d8fd8810c7f359d82d0d5aeef2e09ff1a33b6f8

  • SSDEEP

    1536:4mc6sAFZihsaixiknWljlVIl6Zn76HuWo5ZYbU2aVHhBQzZMHEy9Nq/vKCr:46omgkGlTfE42aVHhBQEEy9Nq/SA

Score
8/10
persistence

Malware Config

Targets

    • Target

      be23ae2167492905eb9c69bd3c1272a1c226328f7c522bb7317918807e66d3c5

    • Size

      127KB

    • MD5

      433fc5041f30be9d91ba9d830d8cad7f

    • SHA1

      68763fde1d886bcf0f44665a6385d221f86ed5aa

    • SHA256

      be23ae2167492905eb9c69bd3c1272a1c226328f7c522bb7317918807e66d3c5

    • SHA512

      03fec1eb6f330e91bed6a374e06c2dbc084f549a8852122be647a46d664ca2bcca8b57e038394f5907441a0d5f7d4270e7730528c8a4f00452c595218dd64b8d

    • SSDEEP

      3072:wOP/UGqWfwd87RXOE8oU2RTgUO8QtlMPI9nB/CCpjCiQN:w8BTTIqNCv8g4IBB/CCpj4N

    Score
    8/10
    persistence

    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

      persistence
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks