Overview

overview

7

Static

static

3

de64c0a6d7...43.exe

windows7-x64

5

de64c0a6d7...43.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    65bb1f52e6c0c06fde3f80db0d28775b.bin

  • Size

    618KB

  • Sample

    240405-brmsdagb7s

  • MD5

    538ea474296bb3ea120d07d9cb5dd2a7

  • SHA1

    4fc36769a6304b58e95f57e518a73912e3f8daf2

  • SHA256

    2dc4db7451d162c56725a4a6a2a7465e28040e333d9d412ddccc878c2ce71c5c

  • SHA512

    e1ff06d6e5e8bbc0701ad89c59c5842cc45e5bee97c582c24f75a5890c9f595ba6f5ec630413ca66a1c651d131720d7d6c7276b7422ae0870c04652eec26206f

  • SSDEEP

    12288:J6E3M0CIry0Zyf8pUc6vSn0xdgVEJyRZKt8NtoL9OVL21:s0XrckO+n0RsRZKMOQRi

Score
7/10

Malware Config

Targets

    • Target

      de64c0a6d7c265a6f917c40454d8f4fad3208d796c8f4616fd271a4882a82843.exe

    • Size

      627KB

    • MD5

      65bb1f52e6c0c06fde3f80db0d28775b

    • SHA1

      e8eef2cf6b560e71a9d33fffd35ddbdcefcd6d8d

    • SHA256

      de64c0a6d7c265a6f917c40454d8f4fad3208d796c8f4616fd271a4882a82843

    • SHA512

      6ff62e926966aa34c0c079bae6293e615c9247db19738a8473373aee336ca275fba010613765bfe0c58a3df761320941170ca38154b40068bcd80d78734c1f2b

    • SSDEEP

      12288:lI7oSkpFY4CpcSWkASPPkN7wSQwpOdkm2evIfyqAC2SAo7ZhDgRh:lI7oSkMODSogwo5pQr8S77Zh0

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks