Overview

overview

7

Static

static

1

ALKAN Order.exe

windows7-x64

5

ALKAN Order.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ALKAN Order.exe

  • Size

    594KB

  • Sample

    230420-mbdejsbb8s

  • MD5

    b5c23568b717b212e11db239401fdcf9

  • SHA1

    8bf63cc1d046833f81719551c99fdce7f4f01f1a

  • SHA256

    58ecce96d2c317095677b0bd1d5bac716129626042ce71e5737a4368799dc861

  • SHA512

    be55439ba5aaff8a7ad5c4e44ec1cdac242dcec08fba3129b9f97ed67256803f285f6362ce7e492556a090a2f9994a69f43fcbab1d74b3561796500a44b0e0d6

  • SSDEEP

    12288:sYMaGLzjp3IBs4LDVI+y1/JMeGUSEDs+F8T9:XMaGLzjp4m25Hy1BMeffD9G

Score
7/10

Malware Config

Targets

    • Target

      ALKAN Order.exe

    • Size

      594KB

    • MD5

      b5c23568b717b212e11db239401fdcf9

    • SHA1

      8bf63cc1d046833f81719551c99fdce7f4f01f1a

    • SHA256

      58ecce96d2c317095677b0bd1d5bac716129626042ce71e5737a4368799dc861

    • SHA512

      be55439ba5aaff8a7ad5c4e44ec1cdac242dcec08fba3129b9f97ed67256803f285f6362ce7e492556a090a2f9994a69f43fcbab1d74b3561796500a44b0e0d6

    • SSDEEP

      12288:sYMaGLzjp3IBs4LDVI+y1/JMeGUSEDs+F8T9:XMaGLzjp4m25Hy1BMeffD9G

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks