Overview

overview

8

Static

static

3

42b3ab3266...d7.exe

windows7-x64

8

42b3ab3266...d7.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    42b3ab32663614f68c72bb3622f2f4d7

  • Size

    172KB

  • Sample

    240105-ej4mpshefj

  • MD5

    42b3ab32663614f68c72bb3622f2f4d7

  • SHA1

    b320161af252866c3d75e30b9fa7e223d3d16ba5

  • SHA256

    7745f732ec05906cee85fc34e7a9a2a6226f43ea3e5246e35d3ce6a729d27cc2

  • SHA512

    298d3d6e89bb600672d81d00b5a8d0385c69cd3858b48970ec5122158bca6b0f5524abc9001dcf74c20a0d1bd404505afd059f63c61b00a8f42bdc636a0c3360

  • SSDEEP

    3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0hck/PJ2D94p6CfjAq4rU5BOG:3bXE9OiTGfhEClq9zk/Rjp6Cfsq0U5B3

Score
8/10

Malware Config

Targets

    • Target

      42b3ab32663614f68c72bb3622f2f4d7

    • Size

      172KB

    • MD5

      42b3ab32663614f68c72bb3622f2f4d7

    • SHA1

      b320161af252866c3d75e30b9fa7e223d3d16ba5

    • SHA256

      7745f732ec05906cee85fc34e7a9a2a6226f43ea3e5246e35d3ce6a729d27cc2

    • SHA512

      298d3d6e89bb600672d81d00b5a8d0385c69cd3858b48970ec5122158bca6b0f5524abc9001dcf74c20a0d1bd404505afd059f63c61b00a8f42bdc636a0c3360

    • SSDEEP

      3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0hck/PJ2D94p6CfjAq4rU5BOG:3bXE9OiTGfhEClq9zk/Rjp6Cfsq0U5B3

    Score
    8/10

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks