Overview

overview

7

Static

static

3

2b04547260...48.exe

windows7-x64

7

2b04547260...48.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b04547260183db1eac33e54db382748

  • Size

    193KB

  • Sample

    231225-tc4rfsdbb6

  • MD5

    2b04547260183db1eac33e54db382748

  • SHA1

    8574962facbb3cf8c517ee65bdafe1ce97d8ff7d

  • SHA256

    8f1e4e2dfeb7eebd5e3d17234bf44a6dd0a7fd68e4d6a9c7de73ec880c9ff2e2

  • SHA512

    3857466e33bd1f153cf830b05578d3093f47f798d1ff0ad73436b43490ad5cd23859eeeaf969341c9819f7621190409608606017ac08d8e0f7e430cc106cfd8d

  • SSDEEP

    3072:43jPII0UAW8mzNdJpfRRqVcF2Fg9B45rFwV2bVCQmp+ZGkkCyKpEi:43jPIIzAW8kd0Fg9m5xwvQA+2pm

Score
7/10
persistence

Malware Config

Targets

    • Target

      2b04547260183db1eac33e54db382748

    • Size

      193KB

    • MD5

      2b04547260183db1eac33e54db382748

    • SHA1

      8574962facbb3cf8c517ee65bdafe1ce97d8ff7d

    • SHA256

      8f1e4e2dfeb7eebd5e3d17234bf44a6dd0a7fd68e4d6a9c7de73ec880c9ff2e2

    • SHA512

      3857466e33bd1f153cf830b05578d3093f47f798d1ff0ad73436b43490ad5cd23859eeeaf969341c9819f7621190409608606017ac08d8e0f7e430cc106cfd8d

    • SSDEEP

      3072:43jPII0UAW8mzNdJpfRRqVcF2Fg9B45rFwV2bVCQmp+ZGkkCyKpEi:43jPIIzAW8kd0Fg9m5xwvQA+2pm

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks