1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

1836db6fc5...a3.exe

windows7-x64

7

1836db6fc5...a3.exe

windows10-2004-x64

7

Sharing

General

Target

1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3
Size

9.5MB
Sample

240527-tbwpfsaf27
MD5

91dd0fecfd1349a5c433f52ccc428c65
SHA1

bda77717dc280f402c2c030618e5190c4c50e946
SHA256

1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3
SHA512

9e6790795204032bac12592def5ba378114a73b736aa009eb20f0560daa2a2accc032aaf37ed0f2fe7a82bf2167a36beddafd9115aca67e397483a98ddede961
SSDEEP

196608:Hp/2a6Ma9pbqnQu4DgefPsPqMThkeXks24GZD2miymVo:RWMa9pLDnfPsPpWeXkzIm4o

Score

7^/10

pyinstaller

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3.exe

Resource

win7-20240221-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3
- Size
  
  9.5MB
- MD5
  
  91dd0fecfd1349a5c433f52ccc428c65
- SHA1
  
  bda77717dc280f402c2c030618e5190c4c50e946
- SHA256
  
  1836db6fc52bc016c35734454f0fd00bf1691568a2769b98f4d3f267772e88a3
- SHA512
  
  9e6790795204032bac12592def5ba378114a73b736aa009eb20f0560daa2a2accc032aaf37ed0f2fe7a82bf2167a36beddafd9115aca67e397483a98ddede961
- SSDEEP
  
  196608:Hp/2a6Ma9pbqnQu4DgefPsPqMThkeXks24GZD2miymVo:RWMa9pLDnfPsPpWeXkzIm4o
Score

7^/10

pyinstaller
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy