Overview

overview

8

Static

static

3

bcee4702f3...7c.exe

windows7-x64

8

bcee4702f3...7c.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bcee4702f35994eb8cf906876a26f77c

  • Size

    9KB

  • Sample

    240309-14l42scb86

  • MD5

    bcee4702f35994eb8cf906876a26f77c

  • SHA1

    a28ebe6c97d37dc961f94d2f2493a62bbd5f735a

  • SHA256

    c954ca3d7e795d323b1d79a7032f6e3db74bd8c0d458299acdc3d6357e65af20

  • SHA512

    fd0c7fce86a1020aa929c830cb28108d2680e653116ce1e522f811eb20a517b7f359a6f7a82732cdba2c3066ffffa9175f6cd86cdceeab3127f12156186d3ad6

  • SSDEEP

    192:4DvrTYiNbLr8YiJuht4bI0dUO2Jt3BU27wNUoynV:Gfx8YiK4bKJtG27war

Score
8/10
persistence

Malware Config

Targets

    • Target

      bcee4702f35994eb8cf906876a26f77c

    • Size

      9KB

    • MD5

      bcee4702f35994eb8cf906876a26f77c

    • SHA1

      a28ebe6c97d37dc961f94d2f2493a62bbd5f735a

    • SHA256

      c954ca3d7e795d323b1d79a7032f6e3db74bd8c0d458299acdc3d6357e65af20

    • SHA512

      fd0c7fce86a1020aa929c830cb28108d2680e653116ce1e522f811eb20a517b7f359a6f7a82732cdba2c3066ffffa9175f6cd86cdceeab3127f12156186d3ad6

    • SSDEEP

      192:4DvrTYiNbLr8YiJuht4bI0dUO2Jt3BU27wNUoynV:Gfx8YiK4bKJtG27war

    Score
    8/10
    persistence

    • Adds policy Run key to start application

      persistence

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks