Overview

overview

8

Static

static

1

732a6bf234...15.lnk

windows7-x64

8

732a6bf234...15.lnk

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    732a6bf2345e9cc40b9a6a1164dc2e823955cbc56a5d3750e675d1c4db7f7415.lnk

  • Size

    618KB

  • Sample

    240713-mr55hazcle

  • MD5

    e449e8239ec8d3910d2f81ed22ec762c

  • SHA1

    07ad434b9828d917e7262713795ca91473389a35

  • SHA256

    732a6bf2345e9cc40b9a6a1164dc2e823955cbc56a5d3750e675d1c4db7f7415

  • SHA512

    7f192692651d5faf4d4cbe07198af4bf0690db29320b53e89c59a166bb62fd2603c16d78676db56bfd78dbe3bb20d6d76c4bc79cc6617f4d63e463ced135e8da

  • SSDEEP

    12288:D+5QA/D71iL0nJvsy8+uZ2gV/dpC8U/isjNE0H37AfZwJCdPUdpYjPLMMMuMH15P:DUf/D71iCCGuwgV/bGLmK37EZuCBUdWS

Score
8/10
executionlinkpdf

Malware Config

Targets

    • Target

      732a6bf2345e9cc40b9a6a1164dc2e823955cbc56a5d3750e675d1c4db7f7415.lnk

    • Size

      618KB

    • MD5

      e449e8239ec8d3910d2f81ed22ec762c

    • SHA1

      07ad434b9828d917e7262713795ca91473389a35

    • SHA256

      732a6bf2345e9cc40b9a6a1164dc2e823955cbc56a5d3750e675d1c4db7f7415

    • SHA512

      7f192692651d5faf4d4cbe07198af4bf0690db29320b53e89c59a166bb62fd2603c16d78676db56bfd78dbe3bb20d6d76c4bc79cc6617f4d63e463ced135e8da

    • SSDEEP

      12288:D+5QA/D71iL0nJvsy8+uZ2gV/dpC8U/isjNE0H37AfZwJCdPUdpYjPLMMMuMH15P:DUf/D71iCCGuwgV/bGLmK37EZuCBUdWS

    Score
    8/10
    executionlinkpdf

    • Command and Scripting Interpreter: PowerShell

      Run Powershell and hide display window.

      execution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks