d630e0751df816caa05fd67f06acce68449a2df82608830ac338e7ec81cf05a2 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ezping.exe

windows10-2004-x64

7

Resubmissions

23-04-2024 22:45

240423-2pgfpace4s 7

23-04-2024 22:43

240423-2nfsrsce3w 7

Sharing

General

Target

ezping.exe
Size

6.3MB
Sample

240423-2nfsrsce3w
MD5

2bd6857555922c383735781ac65f6815
SHA1

4b6716196bec722f262fd2e9388ed9ecd54b410d
SHA256

d630e0751df816caa05fd67f06acce68449a2df82608830ac338e7ec81cf05a2
SHA512

d70068375443bd115af63d4509e42de1cb517ee847e5c8f3f702d850e40ab954b4a54b66a7404c64ec63cb67eb5452922b9f2e96f65bd5fbb2241845be82ac69
SSDEEP

196608:HhNt0udbn3Zdo82vHflFx2s91uWZ84dd3dmp:HZ0udjZUFxz5Z8kop

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ezping.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  ezping.exe
- Size
  
  6.3MB
- MD5
  
  2bd6857555922c383735781ac65f6815
- SHA1
  
  4b6716196bec722f262fd2e9388ed9ecd54b410d
- SHA256
  
  d630e0751df816caa05fd67f06acce68449a2df82608830ac338e7ec81cf05a2
- SHA512
  
  d70068375443bd115af63d4509e42de1cb517ee847e5c8f3f702d850e40ab954b4a54b66a7404c64ec63cb67eb5452922b9f2e96f65bd5fbb2241845be82ac69
- SSDEEP
  
  196608:HhNt0udbn3Zdo82vHflFx2s91uWZ84dd3dmp:HZ0udjZUFxz5Z8kop
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy