Overview

overview

8

Static

static

3

App_02029.exe

windows7-x64

8

App_02029.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ff5c511cfbbc07df2cd3b90bb1c93f472c6848bd2051d6a7300f359e943a269

  • Size

    17.6MB

  • Sample

    240419-skranagd4x

  • MD5

    827d0d0615433f9f80a43b54404d1db8

  • SHA1

    698739f59b318cb1178cd414e3240b1d997e76d6

  • SHA256

    5ff5c511cfbbc07df2cd3b90bb1c93f472c6848bd2051d6a7300f359e943a269

  • SHA512

    ac9f43a3ae089dd63318b80e2e4ad5efd2f34036bdcae8575888fa0ea2978959fee69f5d60b4622cee8e4e109a3cfb21fe6ad4200ff1885fa297515c668394c9

  • SSDEEP

    196608:6ND4obisKzgKUK85HRn/fb3mw+v1NTKzsaFTXaSBWHi/MS0p6b831MgMFmDjuqBo:69NKUKeR/j3C3qpXa2oS0cCMgAysM4z

Score
8/10

Malware Config

Targets

    • Target

      App_02029.exe

    • Size

      64.7MB

    • MD5

      9f3d33664de391537b7bf5178584cca4

    • SHA1

      208896da1bfda8f179966145583a2885635cd131

    • SHA256

      e062c2a5849568482f22b368e8072c0104715db4fe549217bc22e8a39bc99a88

    • SHA512

      7d7fc03c4c3dad94dfc09756753c4658a34aa5b61d28a37f5e8e30454823fd3a0a85e4b8e9fbab3b62b6a51636c632670798e4ced7fa98ecb2c9ac74e29fa558

    • SSDEEP

      196608:XPoufwrXnmsUML1WCvRVDOknyc2ICFWlWlWlWlW6WlWOk0:XPoHms0CvRVO3WlWlWlWlW6WlWF0

    Score
    8/10

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks