Overview

overview

8

Static

static

3

c43d6c3a23...5a.exe

windows7-x64

8

c43d6c3a23...5a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c43d6c3a23e9b6db06eb3052f1b4bf42993acff55704b5ba593d8aa450519d5a

  • Size

    129KB

  • Sample

    240515-c9qgnadf3x

  • MD5

    673e9f83daa6d6f3c16772f4cbca3f25

  • SHA1

    a852d7bfe7a794914cdfb7fc8f458ec65610cb62

  • SHA256

    c43d6c3a23e9b6db06eb3052f1b4bf42993acff55704b5ba593d8aa450519d5a

  • SHA512

    f6b8fcf756c6aec40ab470ab27c43466cfd58743130fbdf471b703150fc412b8f5ac8de544ee6995c312d18445a9c6fab0afe997cd3354063e957305ddf8ba02

  • SSDEEP

    3072:Q1i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc17s5YmMOMYcYY51i/:+i/NjO5xbg/CSUFLTwMjs6l3Oai/NDt

Score
8/10
persistence

Malware Config

Targets

    • Target

      c43d6c3a23e9b6db06eb3052f1b4bf42993acff55704b5ba593d8aa450519d5a

    • Size

      129KB

    • MD5

      673e9f83daa6d6f3c16772f4cbca3f25

    • SHA1

      a852d7bfe7a794914cdfb7fc8f458ec65610cb62

    • SHA256

      c43d6c3a23e9b6db06eb3052f1b4bf42993acff55704b5ba593d8aa450519d5a

    • SHA512

      f6b8fcf756c6aec40ab470ab27c43466cfd58743130fbdf471b703150fc412b8f5ac8de544ee6995c312d18445a9c6fab0afe997cd3354063e957305ddf8ba02

    • SSDEEP

      3072:Q1i/NU8bOMYcYYcmy51VRgiFCpCIXUWOLTsEsigcL3P6xxc17s5YmMOMYcYY51i/:+i/NjO5xbg/CSUFLTwMjs6l3Oai/NDt

    Score
    8/10
    persistence

    • Modifies Installed Components in the registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks