Overview

overview

7

Static

static

3

aed7e301fc...41.exe

windows7-x64

7

aed7e301fc...41.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aed7e301fc665cdf7de0935edf4b9e9bd3df01c52bd094e247d56c5fe58fbc41.exe

  • Size

    11KB

  • Sample

    241119-q8axga1pgq

  • MD5

    3d0676b29844c07530d73c67838e54b4

  • SHA1

    5cf54bed1614a2919a72c142aa3687f0be5176c6

  • SHA256

    aed7e301fc665cdf7de0935edf4b9e9bd3df01c52bd094e247d56c5fe58fbc41

  • SHA512

    0cdbdfa5dc3507a0c9f891c5c0adf34431c41bc1cf9bcc6c342acdb86e126a1cee67d13adc4f4e36d5086bce8b29d0abe7a29dd73ccd2087ec85e7f3bb6f5dcd

  • SSDEEP

    192:Zg6eHLE5KxkDpnqKjIdtaCRYvRtCk1rE1Ty68A3CuYYpZ7ES:G6eHIAx0pqNgHvRtoyhASuYYpZ7ES

Score
7/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      aed7e301fc665cdf7de0935edf4b9e9bd3df01c52bd094e247d56c5fe58fbc41.exe

    • Size

      11KB

    • MD5

      3d0676b29844c07530d73c67838e54b4

    • SHA1

      5cf54bed1614a2919a72c142aa3687f0be5176c6

    • SHA256

      aed7e301fc665cdf7de0935edf4b9e9bd3df01c52bd094e247d56c5fe58fbc41

    • SHA512

      0cdbdfa5dc3507a0c9f891c5c0adf34431c41bc1cf9bcc6c342acdb86e126a1cee67d13adc4f4e36d5086bce8b29d0abe7a29dd73ccd2087ec85e7f3bb6f5dcd

    • SSDEEP

      192:Zg6eHLE5KxkDpnqKjIdtaCRYvRtCk1rE1Ty68A3CuYYpZ7ES:G6eHIAx0pqNgHvRtoyhASuYYpZ7ES

    Score
    7/10
    discoveryevasionpersistencetrojan

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks