Overview

overview

6

Static

static

1

aa37cf9602...0N.exe

windows7-x64

6

aa37cf9602...0N.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    aa37cf960215bd9db8d096764ef6e210N.exe

  • Size

    9.1MB

  • Sample

    240904-agmtys1bnl

  • MD5

    aa37cf960215bd9db8d096764ef6e210

  • SHA1

    34c37aa9c9edfa596ff9e476ef87d5b6ffeb2ee0

  • SHA256

    31eb4376680323bbb588265b463159d03534120e4c9c729c792a4f7641fb35a6

  • SHA512

    effd89cbda9588b8dbf94fa8dc53cc6985cd1c0cb8f7ece574612f512dae2803768c303c1b64a89f83b7db678cf26cc8f5775caa20a20f8444d77417690e7c8e

  • SSDEEP

    196608:AYVql37pjF9U2FshAcBMih02o8NtIOvV53AIC3MQUpUWiHoZyEAZ+FcAjoSZlr:AYVa37pfU2yBY2tnvV5TmjUpUWiHowMv

Score
6/10
defense_evasiondiscoveryexecution

Malware Config

Targets

    • Target

      aa37cf960215bd9db8d096764ef6e210N.exe

    • Size

      9.1MB

    • MD5

      aa37cf960215bd9db8d096764ef6e210

    • SHA1

      34c37aa9c9edfa596ff9e476ef87d5b6ffeb2ee0

    • SHA256

      31eb4376680323bbb588265b463159d03534120e4c9c729c792a4f7641fb35a6

    • SHA512

      effd89cbda9588b8dbf94fa8dc53cc6985cd1c0cb8f7ece574612f512dae2803768c303c1b64a89f83b7db678cf26cc8f5775caa20a20f8444d77417690e7c8e

    • SSDEEP

      196608:AYVql37pjF9U2FshAcBMih02o8NtIOvV53AIC3MQUpUWiHoZyEAZ+FcAjoSZlr:AYVa37pfU2yBY2tnvV5TmjUpUWiHowMv

    Score
    6/10
    defense_evasiondiscoveryexecution

    • Downloads MZ/PE file

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks