Overview

overview

7

Static

static

3

543f2b7fb2...a9.exe

windows7-x64

7

543f2b7fb2...a9.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    543f2b7fb23b0a06f418a4b875eb5a000459200223ed81988a82c75e462cf0a9

  • Size

    1.1MB

  • Sample

    240529-1l547sbf99

  • MD5

    b96915950367af2dc70d436fee01b65a

  • SHA1

    f486bae45094ad6e936094ca28eb135eaf2dc9e8

  • SHA256

    543f2b7fb23b0a06f418a4b875eb5a000459200223ed81988a82c75e462cf0a9

  • SHA512

    6257066363b5f72f42f6316eadcef6eceb990cc901e87eabe1551e4662bc57200ad1f1e9af18feb0c99490a838b0a2e7b51c8298cd1c067066dd4e23d42435bc

  • SSDEEP

    12288:Wh3ZukLF5kU0o3mOxXJXlZCRX9hnJKLqOHB7rFQjtb0KzeKtwOhhJzx4QxaN/Oa:WhMkxBWQXJ+9hQTxhQpb0KSK9zx4vdv

Score
7/10
persistence

Malware Config

Targets

    • Target

      543f2b7fb23b0a06f418a4b875eb5a000459200223ed81988a82c75e462cf0a9

    • Size

      1.1MB

    • MD5

      b96915950367af2dc70d436fee01b65a

    • SHA1

      f486bae45094ad6e936094ca28eb135eaf2dc9e8

    • SHA256

      543f2b7fb23b0a06f418a4b875eb5a000459200223ed81988a82c75e462cf0a9

    • SHA512

      6257066363b5f72f42f6316eadcef6eceb990cc901e87eabe1551e4662bc57200ad1f1e9af18feb0c99490a838b0a2e7b51c8298cd1c067066dd4e23d42435bc

    • SSDEEP

      12288:Wh3ZukLF5kU0o3mOxXJXlZCRX9hnJKLqOHB7rFQjtb0KzeKtwOhhJzx4QxaN/Oa:WhMkxBWQXJ+9hQTxhQpb0KSK9zx4vdv

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks