c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6 | Triage

Submit
Reports

Overview

overview

Static

static

c8c3c733ec...a6.exe

windows7-x64

9

c8c3c733ec...a6.exe

windows10-2004-x64

9

Sharing

General

Target

c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6
Size

61KB
Sample

240524-dqxx3aba91
MD5

4c30ca6d71d72e8f0a0de13941b436e0
SHA1

9568297a3ddf4fb41ff80a5ba44135a507001f68
SHA256

c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6
SHA512

745d6f659ffa2e57153c3a9f491d2ec5204cf2b24f4fc5aafd68fb7bc6a3a59f549609e726d292a77a3ece7731c3fd04a83b70e98a45a982a5e19aac2154a1b6
SSDEEP

768:MDcpEBMLfQcubV5wGE96YyXDTLdEBBBBX:MDcfLfIbtEbyXfZe

Score

10^/10

evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6.exe

Resource

win7-20240221-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6
- Size
  
  61KB
- MD5
  
  4c30ca6d71d72e8f0a0de13941b436e0
- SHA1
  
  9568297a3ddf4fb41ff80a5ba44135a507001f68
- SHA256
  
  c8c3c733ecf4b4be6ff8454c6745403e7e4a66ddddcc6e26ab946bc1f1674aa6
- SHA512
  
  745d6f659ffa2e57153c3a9f491d2ec5204cf2b24f4fc5aafd68fb7bc6a3a59f549609e726d292a77a3ece7731c3fd04a83b70e98a45a982a5e19aac2154a1b6
- SSDEEP
  
  768:MDcpEBMLfQcubV5wGE96YyXDTLdEBBBBX:MDcfLfIbtEbyXfZe
Score

9^/10

evasion
- Detects Windows executables referencing non-Windows User-Agents
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy