Overview

overview

7

Static

static

3

af97151904...31.exe

windows7-x64

7

af97151904...31.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    af9715190438181bcc3942dba4a52c28642cb546e3289717872f29f4fa150b31

  • Size

    12KB

  • Sample

    240419-b8y7qsed8w

  • MD5

    13cfc27ba2a7fcb26c537c9c613e6f0c

  • SHA1

    660c977f4d56f736362f37741789da57c704c2e3

  • SHA256

    af9715190438181bcc3942dba4a52c28642cb546e3289717872f29f4fa150b31

  • SHA512

    5c7074ed4d4be795c0df07468bfd795574bfb96c75397d84d135b2c2a437da4c684650c6f3149ad81a240cf7dcca8a4fe9da74a998b6f970d2d265f29566a804

  • SSDEEP

    384:mL7li/2zpq2DcEQvdhcJKLTp/NK9xa19:AxM/Q9c19

Score
7/10

Malware Config

Targets

    • Target

      af9715190438181bcc3942dba4a52c28642cb546e3289717872f29f4fa150b31

    • Size

      12KB

    • MD5

      13cfc27ba2a7fcb26c537c9c613e6f0c

    • SHA1

      660c977f4d56f736362f37741789da57c704c2e3

    • SHA256

      af9715190438181bcc3942dba4a52c28642cb546e3289717872f29f4fa150b31

    • SHA512

      5c7074ed4d4be795c0df07468bfd795574bfb96c75397d84d135b2c2a437da4c684650c6f3149ad81a240cf7dcca8a4fe9da74a998b6f970d2d265f29566a804

    • SSDEEP

      384:mL7li/2zpq2DcEQvdhcJKLTp/NK9xa19:AxM/Q9c19

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks