Overview

overview

7

Static

static

3

0aaabf84a7...ex.exe

windows7-x64

7

0aaabf84a7...ex.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0aaabf84a7ba4cexeexeexeex.exe

  • Size

    83KB

  • Sample

    230705-tbz2wafb9z

  • MD5

    0aaabf84a7ba4c5983290ac1ca164901

  • SHA1

    4a3211b6483b5ea18aa40b18921094646d141a6d

  • SHA256

    5936481a494474a5b994a1350735af04da6544b5ce8170c9410d824e4926c96c

  • SHA512

    91a60a9ae039e5989340e8667e105470041152ce10aabd8c19fbef213b68276eeab160d3507da61aebb23743498af8696ebd7713e19e4cd3846ca4b337d4f81b

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzMen:ZVxkGOtEvwDpjcp

Score
7/10

Malware Config

Targets

    • Target

      0aaabf84a7ba4cexeexeexeex.exe

    • Size

      83KB

    • MD5

      0aaabf84a7ba4c5983290ac1ca164901

    • SHA1

      4a3211b6483b5ea18aa40b18921094646d141a6d

    • SHA256

      5936481a494474a5b994a1350735af04da6544b5ce8170c9410d824e4926c96c

    • SHA512

      91a60a9ae039e5989340e8667e105470041152ce10aabd8c19fbef213b68276eeab160d3507da61aebb23743498af8696ebd7713e19e4cd3846ca4b337d4f81b

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/RsxQzMen:ZVxkGOtEvwDpjcp

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks