cfe288bddbcb3d4c0a6f25fd648d1d1619ad1558e2e85b9fff92de66f2a7d399 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

Windows Li...ol.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

Windows Licencing Tool.exe
Size

33KB
Sample

240319-t8rf1ahe2t
MD5

f9c66b7ba0f139bcf59b8256f12f1260
SHA1

b36d066f9064e3e64e42daf981406ad4cc130836
SHA256

cfe288bddbcb3d4c0a6f25fd648d1d1619ad1558e2e85b9fff92de66f2a7d399
SHA512

5510a29a28749c171aa66e8d321ed8ca593efb6927bc78a51926a924a7f329620bbc55e4795b043d693fcca89c293809032cfb96667a2e6caaf49168b7944639
SSDEEP

768:+4KUgp8j/35z3zmeF3o6XbOfq1FkY0d74:+4KUgp8j/35z3zRxbOfY094

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Windows Licencing Tool.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

15 signatures

300 seconds

Malware Config

Targets

- Target
  
  Windows Licencing Tool.exe
- Size
  
  33KB
- MD5
  
  f9c66b7ba0f139bcf59b8256f12f1260
- SHA1
  
  b36d066f9064e3e64e42daf981406ad4cc130836
- SHA256
  
  cfe288bddbcb3d4c0a6f25fd648d1d1619ad1558e2e85b9fff92de66f2a7d399
- SHA512
  
  5510a29a28749c171aa66e8d321ed8ca593efb6927bc78a51926a924a7f329620bbc55e4795b043d693fcca89c293809032cfb96667a2e6caaf49168b7944639
- SSDEEP
  
  768:+4KUgp8j/35z3zmeF3o6XbOfq1FkY0d74:+4KUgp8j/35z3zRxbOfY094
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy