Overview

overview

8

Static

static

1

Screenshot...AM.png

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Screenshot 2024-01-19 10.53.04 AM.png

  • Size

    84KB

  • Sample

    240119-thjy8shcfj

  • MD5

    f0bd37c74f98ad5cf55f100c9bc8f74c

  • SHA1

    57d9bd56071165d073e6f0f71afd1f0ebb4bf66d

  • SHA256

    321d525860e2055f8d477fe93381696b81b4e501e31aaa07b71b74a1e95d92bb

  • SHA512

    bc8a5a581b482f13620636fdc823d723ab590c0e3f24b9e8505dc65b523ad154679b6f3cd3ca873ff6e1b99e6357d38c4996c3ec4bf228600723aab932e1fc6c

  • SSDEEP

    1536:xFi/7XLrn1kczdGGteZ9XPpddyyD9/wAe3ZpRNvq2HA:u7XLrCsdZ4XhddJJQZLNvm

Score
8/10
evasionpersistencetrojan

Malware Config

Targets

    • Target

      Screenshot 2024-01-19 10.53.04 AM.png

    • Size

      84KB

    • MD5

      f0bd37c74f98ad5cf55f100c9bc8f74c

    • SHA1

      57d9bd56071165d073e6f0f71afd1f0ebb4bf66d

    • SHA256

      321d525860e2055f8d477fe93381696b81b4e501e31aaa07b71b74a1e95d92bb

    • SHA512

      bc8a5a581b482f13620636fdc823d723ab590c0e3f24b9e8505dc65b523ad154679b6f3cd3ca873ff6e1b99e6357d38c4996c3ec4bf228600723aab932e1fc6c

    • SSDEEP

      1536:xFi/7XLrn1kczdGGteZ9XPpddyyD9/wAe3ZpRNvq2HA:u7XLrCsdZ4XhddJJQZLNvm

    Score
    8/10
    evasionpersistencetrojan

    • Downloads MZ/PE file

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks whether UAC is enabled

      evasiontrojan

    • Checks system information in the registry

      System information is often read in order to detect sandboxing environments.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks