Overview

overview

8

Static

static

3

64d701df4b...14.exe

windows7-x64

3

64d701df4b...14.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    64d701df4bc3b3a7d17134fa09874c14

  • Size

    54KB

  • Sample

    240118-jghpnsfhd4

  • MD5

    64d701df4bc3b3a7d17134fa09874c14

  • SHA1

    9be00ab1890e7ec7c31365054fbb5019f80a883f

  • SHA256

    899564567d6b57566e315f0bad9133138c62cb6d58bcd35756da01837fb1d08c

  • SHA512

    c715e8e08122e6d090584aab7caebec1a6bdb028be3f17e10de3f5409f360fa52d7729ccf64621f676f8f07411004616031776c4066508789e86d4236c4eaca1

  • SSDEEP

    768:sVKm4GV4ujtuYgFC5IjezJckOyLb172+oEFZ0TORX3iSHWIwjkdLv/kcH5hUDrpW:sQKV1MyVckOG12TGX1HxwjkVnDhI+HN

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      64d701df4bc3b3a7d17134fa09874c14

    • Size

      54KB

    • MD5

      64d701df4bc3b3a7d17134fa09874c14

    • SHA1

      9be00ab1890e7ec7c31365054fbb5019f80a883f

    • SHA256

      899564567d6b57566e315f0bad9133138c62cb6d58bcd35756da01837fb1d08c

    • SHA512

      c715e8e08122e6d090584aab7caebec1a6bdb028be3f17e10de3f5409f360fa52d7729ccf64621f676f8f07411004616031776c4066508789e86d4236c4eaca1

    • SSDEEP

      768:sVKm4GV4ujtuYgFC5IjezJckOyLb172+oEFZ0TORX3iSHWIwjkdLv/kcH5hUDrpW:sQKV1MyVckOG12TGX1HxwjkVnDhI+HN

    Score
    8/10
    evasionpersistence

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks