Overview

overview

7

Static

static

3

2e6e34c942...fd.exe

windows7-x64

7

2e6e34c942...fd.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e6e34c94298551addcdf4e50bee3a363f519401fafdfa54867a38c5d95a31fd

  • Size

    1.6MB

  • Sample

    240709-nktnkatcqc

  • MD5

    d272155dfc08e078971c7a09892dcdaa

  • SHA1

    4400e2ba4e1744e785fe9941fa964a684f45a16b

  • SHA256

    2e6e34c94298551addcdf4e50bee3a363f519401fafdfa54867a38c5d95a31fd

  • SHA512

    4c3d2866014702d76fafff3c748dc8de2b47317abfa0917820b7db632fd0cfcebe408244315c49ab2d8f6afca2a4dfc5fc9b558abe3830099ae3d18f3644470b

  • SSDEEP

    49152:qvkT/HEBoq3h1YLAGpqbrxLU9vOiemsNuZ93Syi+JWxBo:qeHGoqh20IurxQ9vI9uZ5fi+JWxBo

Score
7/10

Malware Config

Targets

    • Target

      2e6e34c94298551addcdf4e50bee3a363f519401fafdfa54867a38c5d95a31fd

    • Size

      1.6MB

    • MD5

      d272155dfc08e078971c7a09892dcdaa

    • SHA1

      4400e2ba4e1744e785fe9941fa964a684f45a16b

    • SHA256

      2e6e34c94298551addcdf4e50bee3a363f519401fafdfa54867a38c5d95a31fd

    • SHA512

      4c3d2866014702d76fafff3c748dc8de2b47317abfa0917820b7db632fd0cfcebe408244315c49ab2d8f6afca2a4dfc5fc9b558abe3830099ae3d18f3644470b

    • SSDEEP

      49152:qvkT/HEBoq3h1YLAGpqbrxLU9vOiemsNuZ93Syi+JWxBo:qeHGoqh20IurxQ9vI9uZ5fi+JWxBo

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks