Overview

overview

7

Static

static

3

095cbd6548...c7.exe

windows7-x64

7

095cbd6548...c7.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    095cbd65483b3b9d7d7c36e3934496c7

  • Size

    50KB

  • Sample

    231230-bcy7vsgfc5

  • MD5

    095cbd65483b3b9d7d7c36e3934496c7

  • SHA1

    0fbc523c6ec7163a47b25c012f77afe7a40dd5eb

  • SHA256

    5c0c7b78a21134c7f254fd7801896f8c4052b2c7daa0e74290e6d58c1cceea05

  • SHA512

    fd4103792caf7a1c2121b982a95c228a5685ca26785cea92c6e11044c23cf6f2df8f88e2f3605c9a9622ffa364d4f5d98574c8c2ed26f4f6a33ff53c769daae3

  • SSDEEP

    768:IUFBqhZ+bNIDlMbGroO7Y3x4gu0alK0vz:/FshZll+GroO7W6gu0alR

Score
7/10

Malware Config

Targets

    • Target

      095cbd65483b3b9d7d7c36e3934496c7

    • Size

      50KB

    • MD5

      095cbd65483b3b9d7d7c36e3934496c7

    • SHA1

      0fbc523c6ec7163a47b25c012f77afe7a40dd5eb

    • SHA256

      5c0c7b78a21134c7f254fd7801896f8c4052b2c7daa0e74290e6d58c1cceea05

    • SHA512

      fd4103792caf7a1c2121b982a95c228a5685ca26785cea92c6e11044c23cf6f2df8f88e2f3605c9a9622ffa364d4f5d98574c8c2ed26f4f6a33ff53c769daae3

    • SSDEEP

      768:IUFBqhZ+bNIDlMbGroO7Y3x4gu0alK0vz:/FshZll+GroO7W6gu0alR

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks