Overview

overview

7

Static

static

3

68675b25fc...8f.exe

windows7-x64

7

68675b25fc...8f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68675b25fc8578ac2343eaeef553738f

  • Size

    2.7MB

  • Sample

    240119-xrj75sbhen

  • MD5

    68675b25fc8578ac2343eaeef553738f

  • SHA1

    a84b27d78d47d10a66d9c542c7f878dee117c951

  • SHA256

    33c8e9d960d664a8c7059012f28ae668f4c31fdd0d8e930f22098e7045015d8a

  • SHA512

    91fa016790089fa49cde0df5730553cebf99587a0b46a50f9538284b0b06f97e2d0275e67444913d7467871c9101c6d7422fcb508eafa0010f2d3792296fb053

  • SSDEEP

    49152:t+axysYC6syUkoPaPS2AJNyxUP+Mkt3ZlPl9Ggj2J3Y2peIu0XSkRDv0N:ytClVkoOSfJNAUW93ZlPP2Jo2wUXSaDv

Score
7/10

Malware Config

Targets

    • Target

      68675b25fc8578ac2343eaeef553738f

    • Size

      2.7MB

    • MD5

      68675b25fc8578ac2343eaeef553738f

    • SHA1

      a84b27d78d47d10a66d9c542c7f878dee117c951

    • SHA256

      33c8e9d960d664a8c7059012f28ae668f4c31fdd0d8e930f22098e7045015d8a

    • SHA512

      91fa016790089fa49cde0df5730553cebf99587a0b46a50f9538284b0b06f97e2d0275e67444913d7467871c9101c6d7422fcb508eafa0010f2d3792296fb053

    • SSDEEP

      49152:t+axysYC6syUkoPaPS2AJNyxUP+Mkt3ZlPl9Ggj2J3Y2peIu0XSkRDv0N:ytClVkoOSfJNAUW93ZlPP2Jo2wUXSaDv

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks