Overview

overview

7

Static

static

3

138b13f3ee...a2.exe

windows7-x64

7

138b13f3ee...a2.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    138b13f3ee5dcc666dc86df1941dabeac3018ffd52d44d8099d2f6e9b949a2a2

  • Size

    90KB

  • Sample

    240823-w7xyhazcjf

  • MD5

    78c09e5abf3cb9e302e3f28d90dfae8f

  • SHA1

    af24518082dbdd14d55470f663d6c9239a01c5ce

  • SHA256

    138b13f3ee5dcc666dc86df1941dabeac3018ffd52d44d8099d2f6e9b949a2a2

  • SHA512

    7f9b2f6373d3ec2c6598e642bb216b2b03ea275257311e87af12596ae130c90b97166ad8f6a3f93570266d94ac46eec4525f5abcd329fe67f464782d9669a822

  • SSDEEP

    1536:jvQoLHjw2iWPKMvw71AEMnyXBM/XXXdwVRbvXXXh+Nf17RCXXXDrXXXDKXXXmlGi:jv5Ls27BIJAEMnyXBM/XXXdwVBXXXhYo

Score
7/10
defense_evasiondiscovery

Malware Config

Targets

    • Target

      138b13f3ee5dcc666dc86df1941dabeac3018ffd52d44d8099d2f6e9b949a2a2

    • Size

      90KB

    • MD5

      78c09e5abf3cb9e302e3f28d90dfae8f

    • SHA1

      af24518082dbdd14d55470f663d6c9239a01c5ce

    • SHA256

      138b13f3ee5dcc666dc86df1941dabeac3018ffd52d44d8099d2f6e9b949a2a2

    • SHA512

      7f9b2f6373d3ec2c6598e642bb216b2b03ea275257311e87af12596ae130c90b97166ad8f6a3f93570266d94ac46eec4525f5abcd329fe67f464782d9669a822

    • SSDEEP

      1536:jvQoLHjw2iWPKMvw71AEMnyXBM/XXXdwVRbvXXXh+Nf17RCXXXDrXXXDKXXXmlGi:jv5Ls27BIJAEMnyXBM/XXXdwVBXXXhYo

    Score
    7/10
    defense_evasiondiscovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks