Overview

overview

10

Static

static

3

de9809ba94...8b.exe

windows7-x64

10

de9809ba94...8b.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    de9809ba9417daa44b652d481abaa08b

  • Size

    64KB

  • Sample

    240325-wc6xxshc7v

  • MD5

    de9809ba9417daa44b652d481abaa08b

  • SHA1

    7e4da2937e04af8159124d247c80fe6cddd8f928

  • SHA256

    471f27ee1d789ba667edee39ac08e7a115144231d42c7f43ae8b2db2ae555187

  • SHA512

    a264636829069629d9bfb7968adaa576ef6a7874ac85ecb2784c108339b756f4bf31801ac871de4d09048dd639f6ee4fa5faa64f721512e01c7e299eecefc040

  • SSDEEP

    1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEo:V3c1fP4AJJv45sCcx7JBb/Eo

Score
10/10
evasion

Malware Config

Targets

    • Target

      de9809ba9417daa44b652d481abaa08b

    • Size

      64KB

    • MD5

      de9809ba9417daa44b652d481abaa08b

    • SHA1

      7e4da2937e04af8159124d247c80fe6cddd8f928

    • SHA256

      471f27ee1d789ba667edee39ac08e7a115144231d42c7f43ae8b2db2ae555187

    • SHA512

      a264636829069629d9bfb7968adaa576ef6a7874ac85ecb2784c108339b756f4bf31801ac871de4d09048dd639f6ee4fa5faa64f721512e01c7e299eecefc040

    • SSDEEP

      1536:V3cpyORJLuB4P4AJJv4Romu/gYF5XCcx7icBbMVMEo:V3c1fP4AJJv45sCcx7JBb/Eo

    Score
    10/10
    evasion

    • Modifies visibility of file extensions in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks