2a418f1d9f9792e7433bcca4b9c94bc0cf13c3324a8300cecc859693485af8af | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Seven.zip
Size

1.2MB
Sample

240426-y4qq5abd66
MD5

e69f71e990c00bf7195dcd532360e60d
SHA1

4a9ac1e01d8a9943af88baae3c0c937645ca1b2f
SHA256

2a418f1d9f9792e7433bcca4b9c94bc0cf13c3324a8300cecc859693485af8af
SHA512

f4a355c85af49a6801a1b639bdb30d25cced09261229f6a7094dbaab082c918441c97424acca1a9b8a8988fa7c484b49e904e3dd8f5a0e9f17bc6b00d5032853
SSDEEP

24576:TgWTlc+0kbvziUCiBwqj9Zjeop3G+1uIzgKEIsK5k:ECd0krzdJwqDDpW+YIEKbC

Score

7^/10

Malware Config

Targets

- Target
  
  Seven.dll
- Size
  
  1.1MB
- MD5
  
  564bc2c85a43aaff4175e31366b7ec19
- SHA1
  
  07c93557c463d6c2c26df48239986a6812da7d63
- SHA256
  
  5af1d132641ac3da112a264654ebac00f22d4a3a48505b98242d5668d0e20bfb
- SHA512
  
  079f1ca12039f43d27a099fa19122c778991dc6749592949ed82c62138328c551782680ecae0aaaf2a668ee86207c9d983e63faae7934eae631f383a6178e42d
- SSDEEP
  
  24576:5WwA3QdwQ6hYcM3C4it8qjVZl6uph4mHO+PwKEymKnSF:5s3G9oXP8qFvpKmu+oKXSF
Score

1^/10
behavioral1
- Target
  
  Seven.exe
- Size
  
  139KB
- MD5
  
  350273e0d2e8a9ba5e37b791016112a0
- SHA1
  
  5bfb616dd46f67d1dcbbff55ca5917ffc1ec8b71
- SHA256
  
  27297bf8139bea755e9297e7e1489d827d1ee09a8e1d94a3ef96a2edb2de61ba
- SHA512
  
  b1e768524b4e840bd5f4163205122dd1725583245d8bfd5cbd89eb21a5fb9d33aff1b7b0ca42132b7dae469e025068ae663b3b02ad59927a558dc340141ec91b
- SSDEEP
  
  3072:miS4omp03WQthI/9S3BZi08iRQ1G78IVn27bSfcJd8ltw:miS4ompB9S3BZi0a1G78IVhcTct
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Drops desktop.ini file(s)
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2