Overview

overview

8

Static

static

3

1ebfdfdd77...e5.exe

windows7-x64

8

1ebfdfdd77...e5.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1ebfdfdd77bf4dc347eb5ca1ff4455e5

  • Size

    180KB

  • Sample

    231225-przc3adhd6

  • MD5

    1ebfdfdd77bf4dc347eb5ca1ff4455e5

  • SHA1

    2116a8691d4ac4fc8327a177ce9c71e74cfd8977

  • SHA256

    8dc2d31e099d444dad67796bb29b11e758c133b8342d648ed31ed20c48bff673

  • SHA512

    bc64bc03b7092af105dac27aed8d8d39cd0da45edf340f3ff43442ec5151ae062b92ea17075d960587d662820c397157617eba51e319b979353eb8398f051342

  • SSDEEP

    3072:IBAp5XhKpN4eOyVTGfhEClj8jTk+0hFCvAS7naIbx:/bXE9OiTGfhEClq9a6rx

Score
8/10

Malware Config

Targets

    • Target

      1ebfdfdd77bf4dc347eb5ca1ff4455e5

    • Size

      180KB

    • MD5

      1ebfdfdd77bf4dc347eb5ca1ff4455e5

    • SHA1

      2116a8691d4ac4fc8327a177ce9c71e74cfd8977

    • SHA256

      8dc2d31e099d444dad67796bb29b11e758c133b8342d648ed31ed20c48bff673

    • SHA512

      bc64bc03b7092af105dac27aed8d8d39cd0da45edf340f3ff43442ec5151ae062b92ea17075d960587d662820c397157617eba51e319b979353eb8398f051342

    • SSDEEP

      3072:IBAp5XhKpN4eOyVTGfhEClj8jTk+0hFCvAS7naIbx:/bXE9OiTGfhEClq9a6rx

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks