Overview

overview

7

Static

static

3

LAPG Purch...95.exe

windows7-x64

5

LAPG Purch...95.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LAPG Purchase Order 1112895.exe

  • Size

    699KB

  • Sample

    240311-dlyzkabb6y

  • MD5

    46e63076d351cc9f961da2447f9aee17

  • SHA1

    5c2a163e75bf6b2cbb9a046db4fc720d4a74d45d

  • SHA256

    4a8f29c4d08a8da1d1c1095d2f3ed2793e2abdc3545924fd17353824a7bb4b3f

  • SHA512

    a8889d7ab65524dd258d9a032df43fcac11c67a3dc5b0673061931a32d5f8f7ed5d4a4886555ee3595cd1131f8b41a8fa6bf817722cbadb5512b15be0905b986

  • SSDEEP

    12288:hwX3inVFakoxDyDp0Cj+MxQxaCkciT81nf6Rdmv4y5cgHNtroC/+xvsqt0:E32HdS2mY+M4a5541f6RQv4y7HNd+VsG

Score
7/10

Malware Config

Targets

    • Target

      LAPG Purchase Order 1112895.exe

    • Size

      699KB

    • MD5

      46e63076d351cc9f961da2447f9aee17

    • SHA1

      5c2a163e75bf6b2cbb9a046db4fc720d4a74d45d

    • SHA256

      4a8f29c4d08a8da1d1c1095d2f3ed2793e2abdc3545924fd17353824a7bb4b3f

    • SHA512

      a8889d7ab65524dd258d9a032df43fcac11c67a3dc5b0673061931a32d5f8f7ed5d4a4886555ee3595cd1131f8b41a8fa6bf817722cbadb5512b15be0905b986

    • SSDEEP

      12288:hwX3inVFakoxDyDp0Cj+MxQxaCkciT81nf6Rdmv4y5cgHNtroC/+xvsqt0:E32HdS2mY+M4a5541f6RQv4y7HNd+VsG

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks