b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935 | Triage

Submit
Reports

Overview

overview

Static

static

3

b3993fce09...35.exe

windows7-x64

b3993fce09...35.exe

windows10-2004-x64

Sharing

General

Target

b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935
Size

156KB
Sample

230719-c3735aga3y
MD5

bbd5cc1ef8a9f4133ce97fc7177af584
SHA1

7176342aefe86851ca901b651b46d5f26f7e18b5
SHA256

b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935
SHA512

2bf35b26d751ab0b5b2116e1e0a3037e5283f882298a8c872299e474e1fbe0c6566c32a0571d18de7d907197b84011fc7e802372c3541ec151b018362617f615
SSDEEP

3072:P6t2Lx0Rrf2f6ahsAUX2J6IrOAlVMdUZz3NEGP:PoqInS6oJpz3

Score

10^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935.exe

Resource

win7-20230712-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

16 signatures

150 seconds

Malware Config

Targets

- Target
  
  b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935
- Size
  
  156KB
- MD5
  
  bbd5cc1ef8a9f4133ce97fc7177af584
- SHA1
  
  7176342aefe86851ca901b651b46d5f26f7e18b5
- SHA256
  
  b3993fce099adfebbe61afc218247af37ceb91419ea05e3895007c58ba296935
- SHA512
  
  2bf35b26d751ab0b5b2116e1e0a3037e5283f882298a8c872299e474e1fbe0c6566c32a0571d18de7d907197b84011fc7e802372c3541ec151b018362617f615
- SSDEEP
  
  3072:P6t2Lx0Rrf2f6ahsAUX2J6IrOAlVMdUZz3NEGP:PoqInS6oJpz3
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Modifies Installed Components in the registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy