Overview

overview

7

Static

static

3

96db4f3980...64.exe

windows7-x64

7

96db4f3980...64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    96db4f39807d72aae092d26f2b575964

  • Size

    2.0MB

  • Sample

    240212-lqxlasaa9w

  • MD5

    96db4f39807d72aae092d26f2b575964

  • SHA1

    028cf3c6ba16b794b31e83b300cda9502c5af768

  • SHA256

    c8edc72d79162ffd45319dcdd72ff2f7e277926b09101ab9165a0799da61ddc5

  • SHA512

    6a39abd9606e9d19b6cb8fa4294075e06f0f4d22f95e3e392b0519b6c342260b9c8f33b1e8e5d67f9f5bdb85de33d1b600eda2d27d38dc2f4d86b8361cb13a46

  • SSDEEP

    49152:VH1pbUn8lqgiaIdG1uy/9tXvJ/elKGgweQPc8+rXGBmT:VH1pbUnr5dWRtfJ/QKJQ9+rWB

Score
7/10

Malware Config

Targets

    • Target

      96db4f39807d72aae092d26f2b575964

    • Size

      2.0MB

    • MD5

      96db4f39807d72aae092d26f2b575964

    • SHA1

      028cf3c6ba16b794b31e83b300cda9502c5af768

    • SHA256

      c8edc72d79162ffd45319dcdd72ff2f7e277926b09101ab9165a0799da61ddc5

    • SHA512

      6a39abd9606e9d19b6cb8fa4294075e06f0f4d22f95e3e392b0519b6c342260b9c8f33b1e8e5d67f9f5bdb85de33d1b600eda2d27d38dc2f4d86b8361cb13a46

    • SSDEEP

      49152:VH1pbUn8lqgiaIdG1uy/9tXvJ/elKGgweQPc8+rXGBmT:VH1pbUnr5dWRtfJ/QKJQ9+rWB

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks