e9f8eaa5d20ba8d588ca0e05246d9bd6a4ab04f1d198e613ce5f512e55e8d782 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

1.exe

windows7-x64

8

1.exe

windows10-2004-x64

8

1.exe

windows11-21h2-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

1.exe
Size

32KB
Sample

240103-rq482aghh6
MD5

a28578a343cc18414ae96edc47ff09d5
SHA1

9792c7fd8c4c41be63d1f4bad742a57c48ed0dfb
SHA256

e9f8eaa5d20ba8d588ca0e05246d9bd6a4ab04f1d198e613ce5f512e55e8d782
SHA512

79bf3d184ddbd5489d80edb8973af3eb5c3383997becdb6f98fc858785108ec8d6a50ca3f0bebb8f0119bd8505405a6f60c313cce0b2cf2d7716f72bed4e4d18
SSDEEP

384:8LipZl447piqb/lUYf5uH3w59AMRG5qUIjFgOrjFymqAeO8W8xlrG:dmiiqTfk2AMRGwlFgOrjsblK

Score

8^/10

evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1.exe

Resource

win7-20231215-en

windows7-x64

9 signatures

600 seconds

Behavioral task

behavioral2

Sample

1.exe

Resource

win10v2004-20231222-en

windows10-2004-x64

11 signatures

600 seconds

Behavioral task

behavioral3

Sample

1.exe

Resource

win11-20231215-en

windows11-21h2-x64

14 signatures

600 seconds

Malware Config

Targets

- Target
  
  1.exe
- Size
  
  32KB
- MD5
  
  a28578a343cc18414ae96edc47ff09d5
- SHA1
  
  9792c7fd8c4c41be63d1f4bad742a57c48ed0dfb
- SHA256
  
  e9f8eaa5d20ba8d588ca0e05246d9bd6a4ab04f1d198e613ce5f512e55e8d782
- SHA512
  
  79bf3d184ddbd5489d80edb8973af3eb5c3383997becdb6f98fc858785108ec8d6a50ca3f0bebb8f0119bd8505405a6f60c313cce0b2cf2d7716f72bed4e4d18
- SSDEEP
  
  384:8LipZl447piqb/lUYf5uH3w59AMRG5qUIjFgOrjFymqAeO8W8xlrG:dmiiqTfk2AMRGwlFgOrjsblK
Score

8^/10

evasion
- Blocklisted process makes network request
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

© 2018-2025

Terms | Privacy