de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

de95b3ef6f...68.exe

windows7-x64

7

de95b3ef6f...68.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68
Size

668KB
Sample

230921-ha76badh8v
MD5

3763e589dcbd48d1ad45c3efee4aecef
SHA1

b64995c59192ac970d6ab6295b635751e4854210
SHA256

de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68
SHA512

2351f3950832e94078d09addaca99764952292a75e849c3d9a2d42292d7ce620bd483d4028d529c576e270a80b2fec162e75921ce907c3f25f718ffa6f98ca95
SSDEEP

6144:kY0NhYZkfD4EDYv1wu/9seFA56XGimgn6kj4H7kPXL:3GLcdwu1s/56Dqkj4bS

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68.exe

Resource

win7-20230831-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68
- Size
  
  668KB
- MD5
  
  3763e589dcbd48d1ad45c3efee4aecef
- SHA1
  
  b64995c59192ac970d6ab6295b635751e4854210
- SHA256
  
  de95b3ef6fb44e302b0aaa553acec9c230fbbd78e3edb90f0b485a80e5f7dd68
- SHA512
  
  2351f3950832e94078d09addaca99764952292a75e849c3d9a2d42292d7ce620bd483d4028d529c576e270a80b2fec162e75921ce907c3f25f718ffa6f98ca95
- SSDEEP
  
  6144:kY0NhYZkfD4EDYv1wu/9seFA56XGimgn6kj4H7kPXL:3GLcdwu1s/56Dqkj4bS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy