Overview

overview

8

Static

static

3

63edb1a054...dd.exe

windows7-x64

8

63edb1a054...dd.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    63edb1a054b7e60ce1b072b08e0f33dd

  • Size

    17KB

  • Sample

    240117-3smmjshdf8

  • MD5

    63edb1a054b7e60ce1b072b08e0f33dd

  • SHA1

    3dbe539bac89f5a995d8475ad91476e0ed568bae

  • SHA256

    b5d0f21a8e7ecf5c219fa7c4a7b0c1b03d00cb4b8d8d9df20c1b24a52ccd2cb5

  • SHA512

    f4e6282c83b2495356d9f133b87b8b7d5e3d8314152bf5b1a67cb7b1c802c23321777905a27b3c74c517f8f6e43450a5568add2f78d6272b7e1793c159d6ef0d

  • SSDEEP

    384:7Fd2szfX+cmZO2Zp+Nye8pqrmub8TyztsDN:73bfOoKK8o8TyJc

Score
8/10
persistence

Malware Config

Targets

    • Target

      63edb1a054b7e60ce1b072b08e0f33dd

    • Size

      17KB

    • MD5

      63edb1a054b7e60ce1b072b08e0f33dd

    • SHA1

      3dbe539bac89f5a995d8475ad91476e0ed568bae

    • SHA256

      b5d0f21a8e7ecf5c219fa7c4a7b0c1b03d00cb4b8d8d9df20c1b24a52ccd2cb5

    • SHA512

      f4e6282c83b2495356d9f133b87b8b7d5e3d8314152bf5b1a67cb7b1c802c23321777905a27b3c74c517f8f6e43450a5568add2f78d6272b7e1793c159d6ef0d

    • SSDEEP

      384:7Fd2szfX+cmZO2Zp+Nye8pqrmub8TyztsDN:73bfOoKK8o8TyJc

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks