Overview

overview

8

Static

static

3

c6ccc9c375...a1.exe

windows7-x64

8

c6ccc9c375...a1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6ccc9c375139f6dc664f074e7ae83a1

  • Size

    17KB

  • Sample

    240313-zcfbraga6s

  • MD5

    c6ccc9c375139f6dc664f074e7ae83a1

  • SHA1

    a6e9fc8dc2a9142ebf45dd6284993a2a5847adcc

  • SHA256

    1f85eb52fef2ed381716382202b1c15bbfecc8aff02efb4256a4bc7aaafa8841

  • SHA512

    e849fd33ff2d25789e611017385ac7b374f8d3a8ce0e3e62bca99f0a2173daf1dc7aeb5b020510adef9755e036aa2d13b5e3c514c9bf35dcaf635f166079264a

  • SSDEEP

    384:VFSHgcJQcmZO2Zp+Nye8pqrmub8TyztsDN:VUBJQoKK8o8TyJc

Score
8/10
persistence

Malware Config

Targets

    • Target

      c6ccc9c375139f6dc664f074e7ae83a1

    • Size

      17KB

    • MD5

      c6ccc9c375139f6dc664f074e7ae83a1

    • SHA1

      a6e9fc8dc2a9142ebf45dd6284993a2a5847adcc

    • SHA256

      1f85eb52fef2ed381716382202b1c15bbfecc8aff02efb4256a4bc7aaafa8841

    • SHA512

      e849fd33ff2d25789e611017385ac7b374f8d3a8ce0e3e62bca99f0a2173daf1dc7aeb5b020510adef9755e036aa2d13b5e3c514c9bf35dcaf635f166079264a

    • SSDEEP

      384:VFSHgcJQcmZO2Zp+Nye8pqrmub8TyztsDN:VUBJQoKK8o8TyJc

    Score
    8/10
    persistence

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks