Overview

overview

8

Static

static

3

62608774b2...32.exe

windows7-x64

8

62608774b2...32.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    62608774b218119e487551279c98eb02f142c36b69c4b69191a99632bd1fa632

  • Size

    2.9MB

  • Sample

    230831-1rh7maaf51

  • MD5

    dec604ab31fac94baa2d716e293d49a9

  • SHA1

    93fc15b86d059d7a57e2c7e1917d583a539256bf

  • SHA256

    62608774b218119e487551279c98eb02f142c36b69c4b69191a99632bd1fa632

  • SHA512

    45d439c253cd650db1307572d481fdbb3b36994ca6ef8997c3b2cbeba16ed59899dfe4ec645c78a68a3c05442f8299f1724c0c0dd7df85eb236c80b5cebd14e2

  • SSDEEP

    49152:DnAZUF+5FGhV30nF7EEc/aa/+UsPzI6HzAxHKntkLAxcvLrnnIF:0ZUF+COFgBcc6H0JjLAmnI

Score
8/10

Malware Config

Targets

    • Target

      62608774b218119e487551279c98eb02f142c36b69c4b69191a99632bd1fa632

    • Size

      2.9MB

    • MD5

      dec604ab31fac94baa2d716e293d49a9

    • SHA1

      93fc15b86d059d7a57e2c7e1917d583a539256bf

    • SHA256

      62608774b218119e487551279c98eb02f142c36b69c4b69191a99632bd1fa632

    • SHA512

      45d439c253cd650db1307572d481fdbb3b36994ca6ef8997c3b2cbeba16ed59899dfe4ec645c78a68a3c05442f8299f1724c0c0dd7df85eb236c80b5cebd14e2

    • SSDEEP

      49152:DnAZUF+5FGhV30nF7EEc/aa/+UsPzI6HzAxHKntkLAxcvLrnnIF:0ZUF+COFgBcc6H0JjLAmnI

    Score
    8/10

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks