Overview

overview

10

Static

static

3

fc2da056e7...6N.exe

windows7-x64

10

fc2da056e7...6N.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fc2da056e7e5fe182e67e2010371267d7296b8eabdfd3e1abd24c097896de9a6N

  • Size

    31KB

  • Sample

    240921-pnj4zasbka

  • MD5

    b48cc22f202d4bff54fe2b13a625a7e0

  • SHA1

    9d649e11f8ed5e4c97fe8b4f5ea0928fbe8bfb59

  • SHA256

    fc2da056e7e5fe182e67e2010371267d7296b8eabdfd3e1abd24c097896de9a6

  • SHA512

    b01ee54b70198aef6d60d52c9000444ba25a19297eb630c10a2b4d8690f3e26e6d58bce7f8c1302ec207030e9d717e5f4236040590e2946789104de72c6c4dd0

  • SSDEEP

    768:r25KLZ/vbDEj7RzyCxHKW6wVmuHXJHdzTC/Wc8HEzHvc:r25SZbDEj7RmCxL6wVBpGpRTvc

Score
10/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      fc2da056e7e5fe182e67e2010371267d7296b8eabdfd3e1abd24c097896de9a6N

    • Size

      31KB

    • MD5

      b48cc22f202d4bff54fe2b13a625a7e0

    • SHA1

      9d649e11f8ed5e4c97fe8b4f5ea0928fbe8bfb59

    • SHA256

      fc2da056e7e5fe182e67e2010371267d7296b8eabdfd3e1abd24c097896de9a6

    • SHA512

      b01ee54b70198aef6d60d52c9000444ba25a19297eb630c10a2b4d8690f3e26e6d58bce7f8c1302ec207030e9d717e5f4236040590e2946789104de72c6c4dd0

    • SSDEEP

      768:r25KLZ/vbDEj7RzyCxHKW6wVmuHXJHdzTC/Wc8HEzHvc:r25SZbDEj7RmCxL6wVBpGpRTvc

    Score
    10/10
    discoveryevasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks