Overview

overview

7

Static

static

3

testfile.exe

windows10-1703-x64

7

Resubmissions

11-07-2023 09:24

230711-lc9zgaga52 7

10-07-2023 14:46

230710-r5d1dsbc92 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    testfile.vir

  • Size

    81.0MB

  • Sample

    230710-r5d1dsbc92

  • MD5

    287a950b38c3e48e84553ca80cd0aba1

  • SHA1

    c1f8f40fc2fbd43897931fb029cf2de81c9048f0

  • SHA256

    85ab31c1d2cf82b72a279ad7ba5b24dac3eadcd91af9ee9e677dbe188cd9f801

  • SHA512

    ad3331752540718b77899ca7d1bb842895302bbc22d84fd238f92314e51844de34de3d43f97935019356498f16d15777a80f0de0074b784ffb8ac5a71b45744e

  • SSDEEP

    1572864:dqEUklqnfnDyj2EWTxFRcnUa5/8+G0dsFfZwoss6ei:kEUk+fDKWTxncnl5tsFfZwostV

Score
7/10

Malware Config

Targets

    • Target

      testfile.vir

    • Size

      81.0MB

    • MD5

      287a950b38c3e48e84553ca80cd0aba1

    • SHA1

      c1f8f40fc2fbd43897931fb029cf2de81c9048f0

    • SHA256

      85ab31c1d2cf82b72a279ad7ba5b24dac3eadcd91af9ee9e677dbe188cd9f801

    • SHA512

      ad3331752540718b77899ca7d1bb842895302bbc22d84fd238f92314e51844de34de3d43f97935019356498f16d15777a80f0de0074b784ffb8ac5a71b45744e

    • SSDEEP

      1572864:dqEUklqnfnDyj2EWTxFRcnUa5/8+G0dsFfZwoss6ei:kEUk+fDKWTxncnl5tsFfZwostV

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks