Overview

overview

8

Static

static

3

98c076b473...c0.exe

windows7-x64

8

98c076b473...c0.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    98c076b473e6d513d606df57fc20c8c0

  • Size

    276KB

  • Sample

    240213-hlggqsdb75

  • MD5

    98c076b473e6d513d606df57fc20c8c0

  • SHA1

    23c2af6eac7548fe4a9ea017d2b71901a0a83d40

  • SHA256

    70e7aa32279e6edeab68b8d9ed6cdf64f58c4629589828e795d342f2bfa603e8

  • SHA512

    78e4e5ddf21806dd3f84d083b8fed61a32008bac6e65fc132134f4589c3930ce0975d2c515ecbc3c027c0d13d2fbe396436b735e5d52aa33ef963d27f3daf7c2

  • SSDEEP

    1536:MEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2w:MEsCEsCEsCEsCEsCEsCEsCEsCEsCEs5

Score
8/10

Malware Config

Targets

    • Target

      98c076b473e6d513d606df57fc20c8c0

    • Size

      276KB

    • MD5

      98c076b473e6d513d606df57fc20c8c0

    • SHA1

      23c2af6eac7548fe4a9ea017d2b71901a0a83d40

    • SHA256

      70e7aa32279e6edeab68b8d9ed6cdf64f58c4629589828e795d342f2bfa603e8

    • SHA512

      78e4e5ddf21806dd3f84d083b8fed61a32008bac6e65fc132134f4589c3930ce0975d2c515ecbc3c027c0d13d2fbe396436b735e5d52aa33ef963d27f3daf7c2

    • SSDEEP

      1536:MEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2JEs2w:MEsCEsCEsCEsCEsCEsCEsCEsCEsCEs5

    Score
    8/10

    • Drops file in Drivers directory

    • Manipulates Digital Signatures

      Attackers can apply techniques such as modifying certain DLL exports to make their binary seem valid.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks