Overview

overview

8

Static

static

3

02e4fe7ecd...02.exe

windows7-x64

8

02e4fe7ecd...02.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    02e4fe7ecd54475b869b9492fd254002

  • Size

    58KB

  • Sample

    231224-sgesfsbdfp

  • MD5

    02e4fe7ecd54475b869b9492fd254002

  • SHA1

    404a9bb26e7a7a475a01e47320bb1be282ba0163

  • SHA256

    3e38fb16a4489c43312720848eec12c3c4290f140894656bf5e5a8d345c7bb96

  • SHA512

    b7831a37b6b3ac2ecd44f5863545f350dd589dfff43eb3d062755e203b9fcaf00df79b8e5ee7bb97874fd3239b6cdeeb44895a53669849fd488ea34db440c2d1

  • SSDEEP

    768:61tCn/5uXkmSAV+HIJVtGTdLbRbMlvgIMYToQFTZJK536KQyi/7cgqt:WqoX8AV+otOdfIgIMYToQF9JKl3iTcgc

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      02e4fe7ecd54475b869b9492fd254002

    • Size

      58KB

    • MD5

      02e4fe7ecd54475b869b9492fd254002

    • SHA1

      404a9bb26e7a7a475a01e47320bb1be282ba0163

    • SHA256

      3e38fb16a4489c43312720848eec12c3c4290f140894656bf5e5a8d345c7bb96

    • SHA512

      b7831a37b6b3ac2ecd44f5863545f350dd589dfff43eb3d062755e203b9fcaf00df79b8e5ee7bb97874fd3239b6cdeeb44895a53669849fd488ea34db440c2d1

    • SSDEEP

      768:61tCn/5uXkmSAV+HIJVtGTdLbRbMlvgIMYToQFTZJK536KQyi/7cgqt:WqoX8AV+otOdfIgIMYToQF9JKl3iTcgc

    Score
    8/10
    evasionpersistence

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks