Overview

overview

7

Static

static

3

0fc42a4346...3a.exe

windows7-x64

7

0fc42a4346...3a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0fc42a4346c13258c92abd58e7de273a

  • Size

    613KB

  • Sample

    231225-jksn2sfcg3

  • MD5

    0fc42a4346c13258c92abd58e7de273a

  • SHA1

    45ccfe1c55ac47a7b8582b9795e479b765469977

  • SHA256

    79f0e2ff2a72df433dc2b9488bbc1f464ee1c0d9567cfe4b88b1d4522583bf97

  • SHA512

    0fdb753dfa28ad00694abc434656ba0c4391bca7c16b3813092e0968a7da964c0f81001e19775d7b59c20bd8c1eaeea7c71cdfcfc3db858c7d436c4873b5f236

  • SSDEEP

    12288:NkfmEsCBps7l0F14W/qLHR4jqUYF3Z4mxxTDqVTVOCH:NLXAQJWOHqeQmX6VTzH

Score
7/10

Malware Config

Targets

    • Target

      0fc42a4346c13258c92abd58e7de273a

    • Size

      613KB

    • MD5

      0fc42a4346c13258c92abd58e7de273a

    • SHA1

      45ccfe1c55ac47a7b8582b9795e479b765469977

    • SHA256

      79f0e2ff2a72df433dc2b9488bbc1f464ee1c0d9567cfe4b88b1d4522583bf97

    • SHA512

      0fdb753dfa28ad00694abc434656ba0c4391bca7c16b3813092e0968a7da964c0f81001e19775d7b59c20bd8c1eaeea7c71cdfcfc3db858c7d436c4873b5f236

    • SSDEEP

      12288:NkfmEsCBps7l0F14W/qLHR4jqUYF3Z4mxxTDqVTVOCH:NLXAQJWOHqeQmX6VTzH

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks