Overview

overview

8

Static

static

3

02a5638788...bc.exe

windows7-x64

8

02a5638788...bc.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    02a5638788e0ab39c4cf822ba35787bc

  • Size

    40KB

  • Sample

    231229-yxwnsscec7

  • MD5

    02a5638788e0ab39c4cf822ba35787bc

  • SHA1

    39d7d10908309d1f38592ce04ed23bcf857d6e85

  • SHA256

    12e2ec3a7568d46479306a177eb14d991b613a7cb3a9499d80facc6dc8129d2c

  • SHA512

    216b63e1334e666bee79af3f753fafb2f40e405750b5435c97a5a70884246abf50be910d396e1f8f6d09c6e18a38e7b212cd44d828b22c900da22fed33a43e43

  • SSDEEP

    768:So20WNjWJaMOs13VT8YZTeHS2NOehee2Y/xaBeYwTOKI5dJIle33Gtq1IimOg1ID:F2NlWJaMb3hll24ehee2vh0OKRc30q1f

Score
8/10
persistence

Malware Config

Targets

    • Target

      02a5638788e0ab39c4cf822ba35787bc

    • Size

      40KB

    • MD5

      02a5638788e0ab39c4cf822ba35787bc

    • SHA1

      39d7d10908309d1f38592ce04ed23bcf857d6e85

    • SHA256

      12e2ec3a7568d46479306a177eb14d991b613a7cb3a9499d80facc6dc8129d2c

    • SHA512

      216b63e1334e666bee79af3f753fafb2f40e405750b5435c97a5a70884246abf50be910d396e1f8f6d09c6e18a38e7b212cd44d828b22c900da22fed33a43e43

    • SSDEEP

      768:So20WNjWJaMOs13VT8YZTeHS2NOehee2Y/xaBeYwTOKI5dJIle33Gtq1IimOg1ID:F2NlWJaMb3hll24ehee2vh0OKRc30q1f

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks