Overview

overview

7

Static

static

3

b3f342c603...d8.exe

windows7-x64

7

b3f342c603...d8.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b3f342c6035383ee95794105ebf46fd8

  • Size

    330KB

  • Sample

    240305-gk6vkagg89

  • MD5

    b3f342c6035383ee95794105ebf46fd8

  • SHA1

    dc4c43a34838415231aeb1b4c8487cd014bfb9d4

  • SHA256

    04f0962f590e6d76c46a83447a9d59cbf35fa8503d6891701ffdc9e4be48ee06

  • SHA512

    ff211681e15b53ae2baba0117906a9df8101658dc3b64031a56eb4bd671f4186059f6801224ef2cd3481cfba9ad808ebabb459a6e6f1dec1112674aafd7eab1e

  • SSDEEP

    6144:deuHeBitK3PsspuxCKpSqvHr9dXi6k6A5gtdx4ydTZ2UHzCqbI:kieBitAuxLlxBih5kX9CqbI

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      b3f342c6035383ee95794105ebf46fd8

    • Size

      330KB

    • MD5

      b3f342c6035383ee95794105ebf46fd8

    • SHA1

      dc4c43a34838415231aeb1b4c8487cd014bfb9d4

    • SHA256

      04f0962f590e6d76c46a83447a9d59cbf35fa8503d6891701ffdc9e4be48ee06

    • SHA512

      ff211681e15b53ae2baba0117906a9df8101658dc3b64031a56eb4bd671f4186059f6801224ef2cd3481cfba9ad808ebabb459a6e6f1dec1112674aafd7eab1e

    • SSDEEP

      6144:deuHeBitK3PsspuxCKpSqvHr9dXi6k6A5gtdx4ydTZ2UHzCqbI:kieBitAuxLlxBih5kX9CqbI

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Checks for any installed AV software in registry

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks