Overview

overview

7

Static

static

3

2dbb8d0990...24.exe

windows7-x64

7

2dbb8d0990...24.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2dbb8d0990103bf4776bc627e8b41de2630053cc67533ed38d5d05b3da195524

  • Size

    99KB

  • Sample

    231014-bzw11sbh22

  • MD5

    ceea6638b83ca939a0df100d39de574b

  • SHA1

    0c2d176a1b2b8e051d9998173835c523a7a2efa0

  • SHA256

    2dbb8d0990103bf4776bc627e8b41de2630053cc67533ed38d5d05b3da195524

  • SHA512

    b3c8e659ed51a04d8035ee38e548faea672db93d2e8ec8bf3206610783e2389a7680408d3a30bfe0b16bc8cc89776e3792956992691bc8531038938ec01647d5

  • SSDEEP

    1536:xfgLdQAQfwt7FZJ92BsQCKBAR2pmU/BGhkp3szGPpbTDblnYVJV1PBs:xftffepVPn4ARXU/HZ9/D8Ds

Score
7/10

Malware Config

Targets

    • Target

      2dbb8d0990103bf4776bc627e8b41de2630053cc67533ed38d5d05b3da195524

    • Size

      99KB

    • MD5

      ceea6638b83ca939a0df100d39de574b

    • SHA1

      0c2d176a1b2b8e051d9998173835c523a7a2efa0

    • SHA256

      2dbb8d0990103bf4776bc627e8b41de2630053cc67533ed38d5d05b3da195524

    • SHA512

      b3c8e659ed51a04d8035ee38e548faea672db93d2e8ec8bf3206610783e2389a7680408d3a30bfe0b16bc8cc89776e3792956992691bc8531038938ec01647d5

    • SSDEEP

      1536:xfgLdQAQfwt7FZJ92BsQCKBAR2pmU/BGhkp3szGPpbTDblnYVJV1PBs:xftffepVPn4ARXU/HZ9/D8Ds

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks