Overview

overview

7

Static

static

3

65b127d73a...0N.exe

windows7-x64

7

65b127d73a...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    65b127d73ade41dfe0012ce9cc37ca549d12c7306eb61540d00fb973e4724840N

  • Size

    90KB

  • Sample

    241002-gcxlxszdlm

  • MD5

    da85e435f12df2ed8021698ce78f9b70

  • SHA1

    bba8120a2607f644c60dbc6cf4163b42f725c238

  • SHA256

    65b127d73ade41dfe0012ce9cc37ca549d12c7306eb61540d00fb973e4724840

  • SHA512

    c6b13c7281acf4c9bc2faec07a88dfc23830a63b35779a85dc43c5a5d3e0ffc1c4b59e3f663eb8bf8122fb1d1189f1cc42536c6a99a5d69c0ab54b91aa9c5dfc

  • SSDEEP

    1536:r1Sbpfv5DOWknf7LAQkhB5EQr5PqNzH3EEIMrAgx29E9zt7Hp4h+DGm3/7qq:IbpfhDOW7hBhr4pX5r9x29E9z5HpZDGu

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      65b127d73ade41dfe0012ce9cc37ca549d12c7306eb61540d00fb973e4724840N

    • Size

      90KB

    • MD5

      da85e435f12df2ed8021698ce78f9b70

    • SHA1

      bba8120a2607f644c60dbc6cf4163b42f725c238

    • SHA256

      65b127d73ade41dfe0012ce9cc37ca549d12c7306eb61540d00fb973e4724840

    • SHA512

      c6b13c7281acf4c9bc2faec07a88dfc23830a63b35779a85dc43c5a5d3e0ffc1c4b59e3f663eb8bf8122fb1d1189f1cc42536c6a99a5d69c0ab54b91aa9c5dfc

    • SSDEEP

      1536:r1Sbpfv5DOWknf7LAQkhB5EQr5PqNzH3EEIMrAgx29E9zt7Hp4h+DGm3/7qq:IbpfhDOW7hBhr4pX5r9x29E9z5HpZDGu

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks