Overview

overview

7

Static

static

3

10f71e75a1...0a.exe

windows7-x64

6

10f71e75a1...0a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    10f71e75a12ebd9c46a7300ade56ef01b78cb9260106db8366981ce8ff51da0a

  • Size

    1.8MB

  • Sample

    240829-ep773sshld

  • MD5

    8e4a784ad9f02802fa001c32fffc058e

  • SHA1

    5124cbeff4175001b21e5e9db8080cc8b80fb79c

  • SHA256

    10f71e75a12ebd9c46a7300ade56ef01b78cb9260106db8366981ce8ff51da0a

  • SHA512

    28e5f1d2d87c517bd6a74a9da13923d0b0630b8a4868c1db36491322537b4dd3f099ca08fa1441571a17e0d77d310f400ec1921b828e358af8ad665fc8fe5ca4

  • SSDEEP

    49152:CgYAywWe/J8NO18A+ZxiaPQHQQTfdB9wY+rwSbUo:qAz5WOlUAaYHVTfKYAbU

Score
7/10
defense_evasion

Malware Config

Targets

    • Target

      10f71e75a12ebd9c46a7300ade56ef01b78cb9260106db8366981ce8ff51da0a

    • Size

      1.8MB

    • MD5

      8e4a784ad9f02802fa001c32fffc058e

    • SHA1

      5124cbeff4175001b21e5e9db8080cc8b80fb79c

    • SHA256

      10f71e75a12ebd9c46a7300ade56ef01b78cb9260106db8366981ce8ff51da0a

    • SHA512

      28e5f1d2d87c517bd6a74a9da13923d0b0630b8a4868c1db36491322537b4dd3f099ca08fa1441571a17e0d77d310f400ec1921b828e358af8ad665fc8fe5ca4

    • SSDEEP

      49152:CgYAywWe/J8NO18A+ZxiaPQHQQTfdB9wY+rwSbUo:qAz5WOlUAaYHVTfKYAbU

    Score
    7/10
    defense_evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Obfuscated Files or Information: Command Obfuscation

      Adversaries may obfuscate content during command execution to impede detection.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks