Overview

overview

10

Static

static

10

19b3bafecf...23.exe

windows7-x64

9

19b3bafecf...23.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    19b3bafecf55e99318fad107b8af896a7529ca54263e5adc2b12d788885f8623

  • Size

    55KB

  • Sample

    240409-xcrcxaec47

  • MD5

    d447bb412d08b408bcce53856fa1e565

  • SHA1

    6f27d1d2944176e6a4977eb48013bd3112c7d204

  • SHA256

    19b3bafecf55e99318fad107b8af896a7529ca54263e5adc2b12d788885f8623

  • SHA512

    ff8dd30e91ae2442517a135d80ecf39509ca01d484fffdc52318116858c008ca5be2576ecb9812a838bf1d8909e64ab54e3b0ff732622eda6cebd47e4b294f92

  • SSDEEP

    1536:jvQoLHjw2iWPKMvw71sMLyXugRRRN7TTTgUUU+cccX2:jv5Ls27BIJsMLyXut

Score
10/10

Malware Config

Targets

    • Target

      19b3bafecf55e99318fad107b8af896a7529ca54263e5adc2b12d788885f8623

    • Size

      55KB

    • MD5

      d447bb412d08b408bcce53856fa1e565

    • SHA1

      6f27d1d2944176e6a4977eb48013bd3112c7d204

    • SHA256

      19b3bafecf55e99318fad107b8af896a7529ca54263e5adc2b12d788885f8623

    • SHA512

      ff8dd30e91ae2442517a135d80ecf39509ca01d484fffdc52318116858c008ca5be2576ecb9812a838bf1d8909e64ab54e3b0ff732622eda6cebd47e4b294f92

    • SSDEEP

      1536:jvQoLHjw2iWPKMvw71sMLyXugRRRN7TTTgUUU+cccX2:jv5Ls27BIJsMLyXut

    Score
    9/10

    • Detects Windows executables referencing non-Windows User-Agents

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks