Overview

overview

8

Static

static

1

4b4568e7a2...96.exe

windows7-x64

8

4b4568e7a2...96.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    4b4568e7a21b15eeea8e2c1c11cd51019ab1db961c39cb20a6a8b0313000b696

  • Size

    2.2MB

  • Sample

    240530-1c85haab8y

  • MD5

    f703eabbc8f894cd99538bbaa9d85d7a

  • SHA1

    379575ad23832aadb1ef89708809567f5ef0d414

  • SHA256

    4b4568e7a21b15eeea8e2c1c11cd51019ab1db961c39cb20a6a8b0313000b696

  • SHA512

    9deb8f627dfde6abf16f8969a4376a6372c829206aa35b074a5db09e1d52851c2fdab394bab2c09326696d387b448a2bba475e1ca0e72b660516a4edbc34392f

  • SSDEEP

    49152:kBto5T8wV7oI+qco4xDL/U8ElLrpqlnAn4z+c4SG+4mOPDICVtYE9p+r:kBu5TT7oIgo4xlRDttyc

Score
8/10
discovery

Malware Config

Targets

    • Target

      4b4568e7a21b15eeea8e2c1c11cd51019ab1db961c39cb20a6a8b0313000b696

    • Size

      2.2MB

    • MD5

      f703eabbc8f894cd99538bbaa9d85d7a

    • SHA1

      379575ad23832aadb1ef89708809567f5ef0d414

    • SHA256

      4b4568e7a21b15eeea8e2c1c11cd51019ab1db961c39cb20a6a8b0313000b696

    • SHA512

      9deb8f627dfde6abf16f8969a4376a6372c829206aa35b074a5db09e1d52851c2fdab394bab2c09326696d387b448a2bba475e1ca0e72b660516a4edbc34392f

    • SSDEEP

      49152:kBto5T8wV7oI+qco4xDL/U8ElLrpqlnAn4z+c4SG+4mOPDICVtYE9p+r:kBu5TT7oIgo4xlRDttyc

    Score
    8/10
    discovery

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks