Overview

overview

7

Static

static

3

76e838fcc3...28.dll

windows7-x64

7

76e838fcc3...28.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    76e838fcc3bee359645efd41a1b05362cb6d787f9c5008966517351fed2cb228

  • Size

    854KB

  • Sample

    240908-vtqrlazfqe

  • MD5

    4436b2975cfea99a1b73ba9b87cd71e4

  • SHA1

    35fba2952470d46bd6a580f8029fa624749c17fd

  • SHA256

    76e838fcc3bee359645efd41a1b05362cb6d787f9c5008966517351fed2cb228

  • SHA512

    58bf4c71d3c53a170a13058cc9d0e662457044de311d87fde4748965bdd031cb54aa3377dbde52d1a68cd27e0a2ef567c29f03ca815dbc0c0c67c65dd872b47b

  • SSDEEP

    768:HV1cEy9lm1s503mEP6Q9htGnTED4iT3vyR0ZMeSNCTD/6kpLRmNMjxW7lDETcT:11nZWEP6QjmTiuQSNCnTpLsMEd+c

Score
7/10
defense_evasiondiscoverypersistence

Malware Config

Targets

    • Target

      76e838fcc3bee359645efd41a1b05362cb6d787f9c5008966517351fed2cb228

    • Size

      854KB

    • MD5

      4436b2975cfea99a1b73ba9b87cd71e4

    • SHA1

      35fba2952470d46bd6a580f8029fa624749c17fd

    • SHA256

      76e838fcc3bee359645efd41a1b05362cb6d787f9c5008966517351fed2cb228

    • SHA512

      58bf4c71d3c53a170a13058cc9d0e662457044de311d87fde4748965bdd031cb54aa3377dbde52d1a68cd27e0a2ef567c29f03ca815dbc0c0c67c65dd872b47b

    • SSDEEP

      768:HV1cEy9lm1s503mEP6Q9htGnTED4iT3vyR0ZMeSNCTD/6kpLRmNMjxW7lDETcT:11nZWEP6QjmTiuQSNCnTpLsMEd+c

    Score
    7/10
    defense_evasiondiscoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks