Overview

overview

7

Static

static

3

Mods basicos.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Mods basicos.7z

  • Size

    381.3MB

  • Sample

    230919-ygme7adg72

  • MD5

    5101a97448d17841d51786ea55d7bef8

  • SHA1

    3080701f94f8a4febb1db9fefaf98509a3c5aef3

  • SHA256

    fef94f8b476715d650706bfc28b06b4ea01e540f8e957bad428306da7853cbac

  • SHA512

    86620f89c4c689f0cd8360d0dfc3385c6b32b2f677af495ff2c0177118353d931b621ea5fd245a4bdb44e10a434f28928ec92ee102553996b827de6d91a52a85

  • SSDEEP

    6291456:0ZaZlWli+sBGIe8hwn+u1FK1uRJjxDXr3PcJ1pV6fDGdDp84KLgqz2sFItaaKUMr:0ZaZ8A+soR8hw+uDBRJ1LbUJt+g987LX

Score
7/10
persistence

Malware Config

Targets

    • Target

      Mods basicos.exe

    • Size

      424.9MB

    • MD5

      8c7a10f759b189cb4a133c0c203dc385

    • SHA1

      a77f7fa08853e29adc69bc5ef4bf12c10a8ee102

    • SHA256

      c63433c8f6c5acb0a168678e14281ed38a987f952e2ef6902031010c3329030b

    • SHA512

      862b08557e00d81209eee594ef89f03f30f433b381167148cb150e3a187adf49b88ff788e8db3345ca043665f90eebcdcf0a90b622f67634f0477056f7b32f23

    • SSDEEP

      12582912:FkLw362hZu20lftT0nM1uXo2SNIJYGIwDe0use9xDe0hIDe0ZDe0tH2:FiwH0lyquXRWnwDe0nuDe0KDe0ZDe0tW

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops desktop.ini file(s)

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks