Overview

overview

7

Static

static

3

1b21c42a00...0N.exe

windows7-x64

7

1b21c42a00...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b21c42a002b91ccfbc38cb8a3472a40N.exe

  • Size

    208KB

  • Sample

    240712-amcwya1bpj

  • MD5

    1b21c42a002b91ccfbc38cb8a3472a40

  • SHA1

    1bd65a22cd04391fac820e92ea624e455c14e86f

  • SHA256

    a51471c346766e79a8385a5c717f79a80c4213581940fe87cf99edc69bd4300c

  • SHA512

    6e1d7a33ac9cffe8b55e987ea53cc5144a0f504017858be20a01f3e4225788413b76bef164817b7c3345f74058288b829cd55cc232ceae8359c7bf2a2c894014

  • SSDEEP

    3072:lW9CO41zW5pZJ5p50uvq2WKk9FYx+znSaGdjrozMYeCoZ398p4pLthEjQT65:liyz+vqfjY8OaAHoQYepZ3SpkEjP

Score
7/10

Malware Config

Targets

    • Target

      1b21c42a002b91ccfbc38cb8a3472a40N.exe

    • Size

      208KB

    • MD5

      1b21c42a002b91ccfbc38cb8a3472a40

    • SHA1

      1bd65a22cd04391fac820e92ea624e455c14e86f

    • SHA256

      a51471c346766e79a8385a5c717f79a80c4213581940fe87cf99edc69bd4300c

    • SHA512

      6e1d7a33ac9cffe8b55e987ea53cc5144a0f504017858be20a01f3e4225788413b76bef164817b7c3345f74058288b829cd55cc232ceae8359c7bf2a2c894014

    • SSDEEP

      3072:lW9CO41zW5pZJ5p50uvq2WKk9FYx+znSaGdjrozMYeCoZ398p4pLthEjQT65:liyz+vqfjY8OaAHoQYepZ3SpkEjP

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks