Overview

overview

8

Static

static

3

ccb2ffa0e9...d0.exe

windows7-x64

8

ccb2ffa0e9...d0.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ccb2ffa0e93b05ecb17ac1853e4a51d0

  • Size

    54KB

  • Sample

    240316-bbnpqshe78

  • MD5

    ccb2ffa0e93b05ecb17ac1853e4a51d0

  • SHA1

    df1dce11eebc8452ed7b0276595c303228e9ac62

  • SHA256

    05ad70d2a4db722f8cc72e634b2064262204bbbe3fa288f9c6971a422cc58400

  • SHA512

    6c4cfc9348fda76c6cadfd742b64e18a82d4f7a12a0602bf665ea5fb91a44f5bff5f3cd0ef7e8f943ece0ea89f6aba5be811535764b3ca8cd8301bc8da0631bb

  • SSDEEP

    768:sVKm4GV4ujtuYgFC5IjezJckOyLb172+oEFZ0TORX3iSHWIwjkdLv/kcH5hUDrpd:sQKV1MyVckOG12TGX1HxwjkVnDhI+He

Score
8/10
evasionpersistence

Malware Config

Targets

    • Target

      ccb2ffa0e93b05ecb17ac1853e4a51d0

    • Size

      54KB

    • MD5

      ccb2ffa0e93b05ecb17ac1853e4a51d0

    • SHA1

      df1dce11eebc8452ed7b0276595c303228e9ac62

    • SHA256

      05ad70d2a4db722f8cc72e634b2064262204bbbe3fa288f9c6971a422cc58400

    • SHA512

      6c4cfc9348fda76c6cadfd742b64e18a82d4f7a12a0602bf665ea5fb91a44f5bff5f3cd0ef7e8f943ece0ea89f6aba5be811535764b3ca8cd8301bc8da0631bb

    • SSDEEP

      768:sVKm4GV4ujtuYgFC5IjezJckOyLb172+oEFZ0TORX3iSHWIwjkdLv/kcH5hUDrpd:sQKV1MyVckOG12TGX1HxwjkVnDhI+He

    Score
    8/10
    evasionpersistence

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks