Overview

overview

7

Static

static

3

ORDECHO-DD230007B.exe

windows7-x64

5

ORDECHO-DD230007B.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ORDECHO-DD230007B.exe

  • Size

    713KB

  • Sample

    240428-lcgmxsce73

  • MD5

    acc17e62c8a233a4399ed77bbe33666e

  • SHA1

    635827e18c5864794b3a1f083515867c02648aeb

  • SHA256

    cad8d95932c19fea9bd88b73c887779763061215920a0c796410701d93d63421

  • SHA512

    3e688061f57a7e0cc1d12dfa264098efd83be41ff56ee6b429a60012109dd2deb6d39f7c70df79401740a29635da34c44591f9fe84b0eec4299d68dcb840f29f

  • SSDEEP

    12288:DNgLeFR6oXlv312Z3kWi8AbqgHX2FXFdfyXx7UM72WZz0fIzZAK6ABDtQiegJ:VXJ312ZBi8AOgHXSdo7UY2WmfIzZJ6sH

Score
7/10

Malware Config

Targets

    • Target

      ORDECHO-DD230007B.exe

    • Size

      713KB

    • MD5

      acc17e62c8a233a4399ed77bbe33666e

    • SHA1

      635827e18c5864794b3a1f083515867c02648aeb

    • SHA256

      cad8d95932c19fea9bd88b73c887779763061215920a0c796410701d93d63421

    • SHA512

      3e688061f57a7e0cc1d12dfa264098efd83be41ff56ee6b429a60012109dd2deb6d39f7c70df79401740a29635da34c44591f9fe84b0eec4299d68dcb840f29f

    • SSDEEP

      12288:DNgLeFR6oXlv312Z3kWi8AbqgHX2FXFdfyXx7UM72WZz0fIzZAK6ABDtQiegJ:VXJ312ZBi8AOgHXSdo7UY2WmfIzZJ6sH

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks