General
-
Target
MDE_File_Sample_ff39c56312090a909c2c0c82629c552a3b252a98 (2).zip
-
Size
1.1MB
-
Sample
230415-ev4f3sda37
-
MD5
a34ca8d708e05d6f74c4a3aefc7c0194
-
SHA1
85a2d189f8cf26cb2a6b21f8ac4e31bf535d9a58
-
SHA256
241102d8c2cba773f50b605f9c28444ab5b070c1d86e463a60a21841bd489fc6
-
SHA512
8b45beea71b08a10f861ed209dc22b09652ff4f36cc48fe2734934f1c72937673193e37c9712b0068a047f2482caac59cde5f31d19935abc7a61e66c5c5f33db
-
SSDEEP
24576:9uiJ3emvCZyyQfu0nkeSNPMAPbhKwJUv98lVRt5yJ1+mAsak8hVpvV7:wixfvCXQfpuPBr4qRTkPtak8xd
Static task
static1
Behavioral task
behavioral1
Sample
Setup for cm2demo_oWTv-t1.exe
Resource
win10-20230220-en
Behavioral task
behavioral2
Sample
Setup for cm2demo_oWTv-t1.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
Setup for cm2demo_oWTv-t1.exe
-
Size
1.7MB
-
MD5
99a9fbd5fee72ce51585309390a46717
-
SHA1
ff39c56312090a909c2c0c82629c552a3b252a98
-
SHA256
833064195b0c96bce9a8c00dc95df6bd9fce1092c1260ba0e877810bfc44b0aa
-
SHA512
97f9a98fb48c8281818163d3dbe66fa246e1fe6a5a67f15175419992b0ca389cbe086e457177c21ce9c99ff05a1e0b508812cdf30220090a438dd8c94f73c6b7
-
SSDEEP
24576:R4nXubIQGyxbPV0db26Wmd0l4sv1Et9uGpckT52zedlq89Ws5uIzk5aM/phdO7:Rqe3f61mZSffPMWrQ0ZkA
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-