Overview

overview

7

Static

static

3

41690b4094...50.exe

windows7-x64

7

41690b4094...50.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    41690b4094c81e0faf14d777b0c20e50

  • Size

    2.1MB

  • Sample

    240104-vgkd2sfccp

  • MD5

    41690b4094c81e0faf14d777b0c20e50

  • SHA1

    4d1816901ab2e0ec3efe340af55619049aca7203

  • SHA256

    26185182905a8f1a7a9aaa1432db145b853751aeea9efcdef2210693a5b178e0

  • SHA512

    71f0a99cf66f9ed6c931cc54320ae9a5c3a3cd9dc8174b9434a186091156b75f2c9111a3d2bd0a0a450780b6bda7044d8d60cac96cca390e6429669ffc81a0e5

  • SSDEEP

    49152:Cu3PizSwt452GsuR876cjpTUlOFS1sifoFLWlshKtK9:CMPizAoTjuOAsJlWXtK

Score
7/10
persistence

Malware Config

Targets

    • Target

      41690b4094c81e0faf14d777b0c20e50

    • Size

      2.1MB

    • MD5

      41690b4094c81e0faf14d777b0c20e50

    • SHA1

      4d1816901ab2e0ec3efe340af55619049aca7203

    • SHA256

      26185182905a8f1a7a9aaa1432db145b853751aeea9efcdef2210693a5b178e0

    • SHA512

      71f0a99cf66f9ed6c931cc54320ae9a5c3a3cd9dc8174b9434a186091156b75f2c9111a3d2bd0a0a450780b6bda7044d8d60cac96cca390e6429669ffc81a0e5

    • SSDEEP

      49152:Cu3PizSwt452GsuR876cjpTUlOFS1sifoFLWlshKtK9:CMPizAoTjuOAsJlWXtK

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks