Overview

overview

7

Static

static

3

c5e3045463...ab.exe

windows7-x64

7

c5e3045463...ab.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c5e3045463eec98fb592703d17d764ab

  • Size

    414KB

  • Sample

    240313-pr9tsseg39

  • MD5

    c5e3045463eec98fb592703d17d764ab

  • SHA1

    f833057e667bb46c9c5760706ff93ef3becfa16f

  • SHA256

    e1522348b9a344636d8e3b22a41fec6d78e938ed118a5f4204ffad4ba87536b6

  • SHA512

    82372f593276c9017eab00db39b207d03e42dd49a5a46f70d94700ae797c903264dc06c5962b60c2201efb64f37c24fd306506da0aef041b03c7556c68ef1725

  • SSDEEP

    12288:IkWAehJuqT6zxyJr9Cw6g0Q+kSDEPhdIJ9WmDjylJ69V:IkWAAuqezIhwPTQq7J9WWjEk9V

Score
7/10

Malware Config

Targets

    • Target

      c5e3045463eec98fb592703d17d764ab

    • Size

      414KB

    • MD5

      c5e3045463eec98fb592703d17d764ab

    • SHA1

      f833057e667bb46c9c5760706ff93ef3becfa16f

    • SHA256

      e1522348b9a344636d8e3b22a41fec6d78e938ed118a5f4204ffad4ba87536b6

    • SHA512

      82372f593276c9017eab00db39b207d03e42dd49a5a46f70d94700ae797c903264dc06c5962b60c2201efb64f37c24fd306506da0aef041b03c7556c68ef1725

    • SSDEEP

      12288:IkWAehJuqT6zxyJr9Cw6g0Q+kSDEPhdIJ9WmDjylJ69V:IkWAAuqezIhwPTQq7J9WWjEk9V

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks