Overview

overview

7

Static

static

1

pharmacy_3...02.exe

windows7-x64

7

pharmacy_3...02.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    pharmacy_3_0_160602.exe

  • Size

    17.3MB

  • Sample

    230615-p44hjsha76

  • MD5

    5aaf9402d58fe541fe4e5ec094f668ff

  • SHA1

    73e87b91c74c73d02588c38854a672798318ecb5

  • SHA256

    007baf0d208771b6a5a062be5f1f253a25938173ebe4c5e0eddf7f79cb9c490b

  • SHA512

    f093eb1ec320f65b064cf7a13c53087e6cff361f073b5e475919ed653700a5588f49feab6160f05008ddcd7faa0489d2cbaa0504802820b54f686d278c8d9841

  • SSDEEP

    393216:5NLmbUSnNiT/V9vo5bm3j7ysa+38cyUzghqZYS99hS2GdtPR:nmziN9vIm3ysvM1UQn8hidtp

Score
7/10

Malware Config

Targets

    • Target

      pharmacy_3_0_160602.exe

    • Size

      17.3MB

    • MD5

      5aaf9402d58fe541fe4e5ec094f668ff

    • SHA1

      73e87b91c74c73d02588c38854a672798318ecb5

    • SHA256

      007baf0d208771b6a5a062be5f1f253a25938173ebe4c5e0eddf7f79cb9c490b

    • SHA512

      f093eb1ec320f65b064cf7a13c53087e6cff361f073b5e475919ed653700a5588f49feab6160f05008ddcd7faa0489d2cbaa0504802820b54f686d278c8d9841

    • SSDEEP

      393216:5NLmbUSnNiT/V9vo5bm3j7ysa+38cyUzghqZYS99hS2GdtPR:nmziN9vIm3ysvM1UQn8hidtp

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks