Overview

overview

7

Static

static

1

ddac61f918...2e.lnk

windows7-x64

6

ddac61f918...2e.lnk

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ddac61f918ed87b49ef15d05873e7f52b919758aef713145f6a7d538c714fa2e

  • Size

    199KB

  • Sample

    240410-jve6psgh22

  • MD5

    8dea867b72374fad43cc301d9af5a24b

  • SHA1

    15f433e7c5618551b3488bdd347042277ca22f44

  • SHA256

    ddac61f918ed87b49ef15d05873e7f52b919758aef713145f6a7d538c714fa2e

  • SHA512

    773a60a74a297b7b8a3f36711891d574b889b5bc632e49143b06a6e9e7a907193bb811faec00ad0fb59913871d10047e846aa724f4f566328c025d83c04f594e

  • SSDEEP

    6144:nRQbdY5+NTrmwMtGQJh5PAW7LebJcDgym8/kU0:nKZVTiwMtHh5P1Lo4kB

Score
7/10
persistence

Malware Config

Targets

    • Target

      ddac61f918ed87b49ef15d05873e7f52b919758aef713145f6a7d538c714fa2e

    • Size

      199KB

    • MD5

      8dea867b72374fad43cc301d9af5a24b

    • SHA1

      15f433e7c5618551b3488bdd347042277ca22f44

    • SHA256

      ddac61f918ed87b49ef15d05873e7f52b919758aef713145f6a7d538c714fa2e

    • SHA512

      773a60a74a297b7b8a3f36711891d574b889b5bc632e49143b06a6e9e7a907193bb811faec00ad0fb59913871d10047e846aa724f4f566328c025d83c04f594e

    • SSDEEP

      6144:nRQbdY5+NTrmwMtGQJh5PAW7LebJcDgym8/kU0:nKZVTiwMtHh5P1Lo4kB

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks