Overview

overview

7

Static

static

3

79157c6ce4...e1.exe

windows7-x64

7

79157c6ce4...e1.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    79157c6ce4c65e7877dcc85ddc01e5942127487d8bd6789ee14de386e233f8e1

  • Size

    1.1MB

  • Sample

    240523-cs3ewsae94

  • MD5

    083d39a50a9fd00ea942f913e008269e

  • SHA1

    c6c6a74c78af56865b7bc97f55e759dbb710d979

  • SHA256

    79157c6ce4c65e7877dcc85ddc01e5942127487d8bd6789ee14de386e233f8e1

  • SHA512

    79a2820d308e0213b7c0339fde3dcfaeb63e9ce161fd3aa1da726bb2d4b3e6cd62c1ab737574875bb33ef58d48eefd63de5fa5392c1eb701eea5e6fd33ea4126

  • SSDEEP

    24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QY:CcaClSFlG4ZM7QzM/

Score
7/10

Malware Config

Targets

    • Target

      79157c6ce4c65e7877dcc85ddc01e5942127487d8bd6789ee14de386e233f8e1

    • Size

      1.1MB

    • MD5

      083d39a50a9fd00ea942f913e008269e

    • SHA1

      c6c6a74c78af56865b7bc97f55e759dbb710d979

    • SHA256

      79157c6ce4c65e7877dcc85ddc01e5942127487d8bd6789ee14de386e233f8e1

    • SHA512

      79a2820d308e0213b7c0339fde3dcfaeb63e9ce161fd3aa1da726bb2d4b3e6cd62c1ab737574875bb33ef58d48eefd63de5fa5392c1eb701eea5e6fd33ea4126

    • SSDEEP

      24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QY:CcaClSFlG4ZM7QzM/

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks