1043d01d6b38dead9d9abbf311564f29e514603af384ddc57ca01a1c789caeb6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SevenRedCodeDotnet.exe
Size

29KB
Sample

240512-zdjessfa7v
MD5

a76a84cb42da8c34121ce67690cf7ab7
SHA1

55fd18ec3bcb3cb7d88e6f30a6c9227d583cc238
SHA256

1043d01d6b38dead9d9abbf311564f29e514603af384ddc57ca01a1c789caeb6
SHA512

24d8e3cc87b84453cef44db2fe40e96287c9ddd195d0a5be01ff4cdc26ac90b3b9fa961dd377fd09f66a99c8f3e47cd680ba8c63120aff4214769c871eed980c
SSDEEP

384:LKHg4EqSxX9D9k2D8YgRzbjvCcyorF6HgrvkjvcK5MXqAYiDNBxQWz+vEJweg2A5:WA19RD8ZRb3L0mNJcEJ1gWq

Score

7^/10

Malware Config

Targets

- Target
  
  SevenRedCodeDotnet.exe
- Size
  
  29KB
- MD5
  
  a76a84cb42da8c34121ce67690cf7ab7
- SHA1
  
  55fd18ec3bcb3cb7d88e6f30a6c9227d583cc238
- SHA256
  
  1043d01d6b38dead9d9abbf311564f29e514603af384ddc57ca01a1c789caeb6
- SHA512
  
  24d8e3cc87b84453cef44db2fe40e96287c9ddd195d0a5be01ff4cdc26ac90b3b9fa961dd377fd09f66a99c8f3e47cd680ba8c63120aff4214769c871eed980c
- SSDEEP
  
  384:LKHg4EqSxX9D9k2D8YgRzbjvCcyorF6HgrvkjvcK5MXqAYiDNBxQWz+vEJweg2A5:WA19RD8ZRb3L0mNJcEJ1gWq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2