Overview

overview

7

Static

static

3

freeocr541.exe

windows7-x64

7

freeocr541.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    freeocr541.exe

  • Size

    10.8MB

  • Sample

    240303-elercsda34

  • MD5

    160ddb7233c2a3acfce8309a36f4b992

  • SHA1

    b9c59b59ed325ab0e2182e3ebbb147b0b8f5dd9c

  • SHA256

    0bf9d979c7bc3774fc6ae39df31afc89bfd9af60120fc2d1be50b1b35e850d64

  • SHA512

    50e2e0014935a73468f62c0f7bddfb232e1d817de3f697072285367606b7c1628c46b337ae4209d5b2060583c9cc5294be144bcc0247da758286cbd48062e3f6

  • SSDEEP

    196608:FlkvsbARsOK0eRQSaM49jnJyFj4TjAHEV5ViXD9rq5cFFjqIIqLUuKkFm:FpARsO/eRhD8nG4EG5c2IIqznFm

Score
7/10
discovery

Malware Config

Targets

    • Target

      freeocr541.exe

    • Size

      10.8MB

    • MD5

      160ddb7233c2a3acfce8309a36f4b992

    • SHA1

      b9c59b59ed325ab0e2182e3ebbb147b0b8f5dd9c

    • SHA256

      0bf9d979c7bc3774fc6ae39df31afc89bfd9af60120fc2d1be50b1b35e850d64

    • SHA512

      50e2e0014935a73468f62c0f7bddfb232e1d817de3f697072285367606b7c1628c46b337ae4209d5b2060583c9cc5294be144bcc0247da758286cbd48062e3f6

    • SSDEEP

      196608:FlkvsbARsOK0eRQSaM49jnJyFj4TjAHEV5ViXD9rq5cFFjqIIqLUuKkFm:FpARsO/eRhD8nG4EG5c2IIqznFm

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks