a45277725e6e0a421f6c92af4a0142e480c3cd1cf24897c9af5b6570f6183c16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

FadeHook.exe
Size

1.4MB
Sample

240912-vpgm5avekq
MD5

5bdacef97877a676b6fead3dad887fd4
SHA1

d10c6ad1646716e7271a52617fb35fbfad8ce9ed
SHA256

a45277725e6e0a421f6c92af4a0142e480c3cd1cf24897c9af5b6570f6183c16
SHA512

61f42beb57b574d4a55c1074f35fd2982cf2131ae9f7660f396ff759b654a7208ad80378e17281b644b5b4570aa0fd77ca328ae6b4049fb6bcc09803c3761fc4
SSDEEP

24576:UuDXTIGaPhEYzUzA0wo4KGXHv+ESso4KGXHv+ESyQtqRuEhzOJhgwxcDYnQK4lV7:zDjlabwz9xGXGE+GXGEq2umzOHcD9K4L

Score

7^/10

Malware Config

Targets

- Target
  
  FadeHook.exe
- Size
  
  1.4MB
- MD5
  
  5bdacef97877a676b6fead3dad887fd4
- SHA1
  
  d10c6ad1646716e7271a52617fb35fbfad8ce9ed
- SHA256
  
  a45277725e6e0a421f6c92af4a0142e480c3cd1cf24897c9af5b6570f6183c16
- SHA512
  
  61f42beb57b574d4a55c1074f35fd2982cf2131ae9f7660f396ff759b654a7208ad80378e17281b644b5b4570aa0fd77ca328ae6b4049fb6bcc09803c3761fc4
- SSDEEP
  
  24576:UuDXTIGaPhEYzUzA0wo4KGXHv+ESso4KGXHv+ESyQtqRuEhzOJhgwxcDYnQK4lV7:zDjlabwz9xGXGE+GXGEq2umzOHcD9K4L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1