Overview

overview

7

Static

static

3

b28799265f...c4.exe

windows7-x64

7

b28799265f...c4.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b28799265fb29a129f74245ecc5d27a5b4d1da9c1e26886af9cccbe63c3228c4

  • Size

    12KB

  • Sample

    240607-gcnn1sbe34

  • MD5

    f6f59ce383d9f3881b305fac6fa5f364

  • SHA1

    95fadd4e0bb1f40710ebbf8b4a7a8dbffa37667e

  • SHA256

    b28799265fb29a129f74245ecc5d27a5b4d1da9c1e26886af9cccbe63c3228c4

  • SHA512

    fa05cb2c54629cb036e6a5b6919bbd2c0b7069970b10ed8da5e7ea6b5cb38faaf6b8216e353e3a8569c34a13f30da4b46984bab062150dd2d1b72f57363c1f08

  • SSDEEP

    384:JL7li/2zSq2DcEQvdhcJKLTp/NK9xapG:56M/Q9cpG

Score
7/10

Malware Config

Targets

    • Target

      b28799265fb29a129f74245ecc5d27a5b4d1da9c1e26886af9cccbe63c3228c4

    • Size

      12KB

    • MD5

      f6f59ce383d9f3881b305fac6fa5f364

    • SHA1

      95fadd4e0bb1f40710ebbf8b4a7a8dbffa37667e

    • SHA256

      b28799265fb29a129f74245ecc5d27a5b4d1da9c1e26886af9cccbe63c3228c4

    • SHA512

      fa05cb2c54629cb036e6a5b6919bbd2c0b7069970b10ed8da5e7ea6b5cb38faaf6b8216e353e3a8569c34a13f30da4b46984bab062150dd2d1b72f57363c1f08

    • SSDEEP

      384:JL7li/2zSq2DcEQvdhcJKLTp/NK9xapG:56M/Q9cpG

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks