Overview

overview

7

Static

static

3

eeed9b9b98...6b.exe

windows7-x64

7

eeed9b9b98...6b.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eeed9b9b988f46dfa390eadea99a776b.exe

  • Size

    207KB

  • Sample

    230608-gnkrhadd3w

  • MD5

    eeed9b9b988f46dfa390eadea99a776b

  • SHA1

    b5aa537d708fc85718bcc7e6f313b34658dba25b

  • SHA256

    a2f602e8ced3fd3e09cb5079828c05e9cc93a43ce83aace21c46a3810f72c665

  • SHA512

    c7cc8bd47f0241d4950b5accb76ba3434715866513ae2f96afeac79fb8448f72af80510a81bcaaba22021e402eefb4023e8ab0c9146c96f9f240c493259ccfa6

  • SSDEEP

    3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score
7/10

Malware Config

Targets

    • Target

      eeed9b9b988f46dfa390eadea99a776b.exe

    • Size

      207KB

    • MD5

      eeed9b9b988f46dfa390eadea99a776b

    • SHA1

      b5aa537d708fc85718bcc7e6f313b34658dba25b

    • SHA256

      a2f602e8ced3fd3e09cb5079828c05e9cc93a43ce83aace21c46a3810f72c665

    • SHA512

      c7cc8bd47f0241d4950b5accb76ba3434715866513ae2f96afeac79fb8448f72af80510a81bcaaba22021e402eefb4023e8ab0c9146c96f9f240c493259ccfa6

    • SSDEEP

      3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

1
T1053

Persistence

Scheduled Task

1
T1053

Privilege Escalation

Scheduled Task

1
T1053

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks