Overview

overview

7

Static

static

3

infatica1140.exe

windows7-x64

7

infatica1140.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    infatica1140.exe

  • Size

    2.3MB

  • Sample

    240228-hlznbadg84

  • MD5

    4b9f5c2b4036a8d0a5d131c63d0b49e9

  • SHA1

    eea747710e68bf5c02f4bed98e2fff3d08149f55

  • SHA256

    be570de0dc914402e7de5f2f8082a5878552d105dea0e0700812d6769f7424a8

  • SHA512

    52a7d6a5a2c07a13e0a05c373044a194abaf286175262cf75207a17c81f2340fcc7d63ad4bd3bd9e1a3886d83c9219a4a35e5bdf822ed56001c4a88999aaeee4

  • SSDEEP

    49152:8BJM4+6Q8xMHHlg3qOwN1zSkKrIAu7jpLiW/u00rpLZZlqnLSKhj08:O+dUMHHlexIRSk6qpLiWRUjlqLxjX

Score
7/10
discovery

Malware Config

Targets

    • Target

      infatica1140.exe

    • Size

      2.3MB

    • MD5

      4b9f5c2b4036a8d0a5d131c63d0b49e9

    • SHA1

      eea747710e68bf5c02f4bed98e2fff3d08149f55

    • SHA256

      be570de0dc914402e7de5f2f8082a5878552d105dea0e0700812d6769f7424a8

    • SHA512

      52a7d6a5a2c07a13e0a05c373044a194abaf286175262cf75207a17c81f2340fcc7d63ad4bd3bd9e1a3886d83c9219a4a35e5bdf822ed56001c4a88999aaeee4

    • SSDEEP

      49152:8BJM4+6Q8xMHHlg3qOwN1zSkKrIAu7jpLiW/u00rpLZZlqnLSKhj08:O+dUMHHlexIRSk6qpLiWRUjlqLxjX

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks