Overview

overview

7

Static

static

3

3c9e2b49a5...1f.exe

windows7-x64

7

3c9e2b49a5...1f.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3c9e2b49a5121314b7456182409322bf80ee9ccdb762c16af979d5be34a7b11f

  • Size

    12KB

  • Sample

    240530-zpxfssba38

  • MD5

    54e30930c12d17dca6614c1cca5b6143

  • SHA1

    61de8931ec208a0c9af1413cc320e55f3dd548b3

  • SHA256

    3c9e2b49a5121314b7456182409322bf80ee9ccdb762c16af979d5be34a7b11f

  • SHA512

    e0f2d2eb51ff66a6630d8a0698ca66a9c2347892cd26f7bd9cc3efeaba47cb21fc690d4da4420168d1df5abd9eee49956ea9eeb57e413db8b79a3f17d32c1400

  • SSDEEP

    384:XL7li/2zxq2DcEQvdhcJKLTp/NK9xaw1:bxM/Q9cw1

Score
7/10

Malware Config

Targets

    • Target

      3c9e2b49a5121314b7456182409322bf80ee9ccdb762c16af979d5be34a7b11f

    • Size

      12KB

    • MD5

      54e30930c12d17dca6614c1cca5b6143

    • SHA1

      61de8931ec208a0c9af1413cc320e55f3dd548b3

    • SHA256

      3c9e2b49a5121314b7456182409322bf80ee9ccdb762c16af979d5be34a7b11f

    • SHA512

      e0f2d2eb51ff66a6630d8a0698ca66a9c2347892cd26f7bd9cc3efeaba47cb21fc690d4da4420168d1df5abd9eee49956ea9eeb57e413db8b79a3f17d32c1400

    • SSDEEP

      384:XL7li/2zxq2DcEQvdhcJKLTp/NK9xaw1:bxM/Q9cw1

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks