Overview

overview

7

Static

static

3

EXM Premiu...ty.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    EXM Premium Tweaking Utility.exe

  • Size

    73.0MB

  • Sample

    240712-kjjv7aybkc

  • MD5

    b344505198945ffbaa833df3b777d9df

  • SHA1

    0abd9011c6079e0e779f02d9a97b23f27261928d

  • SHA256

    69a7d7beed6b37c6e7015b85daae3812f82fd5e96fa9d44a766c85e8a8d6d156

  • SHA512

    d525e82ac0a8853d86b3328b4713b52c6dad1f0a9691ee107c6abbce35dfa11a62998422b81600d0a73e110d87f1076eb483b8d756c4bea38ff8ac2853cb5e22

  • SSDEEP

    1572864:ukTFgDCRS15dWx07MwbxHJpczuTm2ydezFSj7IzR3IFkShgILrMbl:uIFgDCgdWG7hHJp62XpSYR3IFkSOnbl

Score
7/10

Malware Config

Targets

    • Target

      EXM Premium Tweaking Utility.exe

    • Size

      73.0MB

    • MD5

      b344505198945ffbaa833df3b777d9df

    • SHA1

      0abd9011c6079e0e779f02d9a97b23f27261928d

    • SHA256

      69a7d7beed6b37c6e7015b85daae3812f82fd5e96fa9d44a766c85e8a8d6d156

    • SHA512

      d525e82ac0a8853d86b3328b4713b52c6dad1f0a9691ee107c6abbce35dfa11a62998422b81600d0a73e110d87f1076eb483b8d756c4bea38ff8ac2853cb5e22

    • SSDEEP

      1572864:ukTFgDCRS15dWx07MwbxHJpczuTm2ydezFSj7IzR3IFkShgILrMbl:uIFgDCgdWG7hHJp62XpSYR3IFkSOnbl

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks