Overview

overview

7

Static

static

3

Hoodology.exe

windows7-x64

3

Hoodology.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Hoodology.exe

  • Size

    12KB

  • Sample

    241119-qf72hawmbt

  • MD5

    d79ff0ce2970694e3a6a652c57ec2ffa

  • SHA1

    a1f77f9bf44dda9a0f56921d4c96dd7d113c7809

  • SHA256

    5dd94b23ed3c33ea35ec0c0e217a5218eeafd8d7b7e666633e67fe4d664d8e21

  • SHA512

    40f6d028859ae42d31644bb70b73465eeb83d855e237684e2ff8ba8efe94ce829b647240573b8fa39516219e8dc330a2e2a4eb2c22b29fe6df32ab83ea0893f2

  • SSDEEP

    192:8+PrZsQgLVWnlCcDZUu7X5mkMeBi1eJVBVYopP:8GZsQgLslNZUuVmiE1edVTp

Score
7/10
discovery

Malware Config

Targets

    • Target

      Hoodology.exe

    • Size

      12KB

    • MD5

      d79ff0ce2970694e3a6a652c57ec2ffa

    • SHA1

      a1f77f9bf44dda9a0f56921d4c96dd7d113c7809

    • SHA256

      5dd94b23ed3c33ea35ec0c0e217a5218eeafd8d7b7e666633e67fe4d664d8e21

    • SHA512

      40f6d028859ae42d31644bb70b73465eeb83d855e237684e2ff8ba8efe94ce829b647240573b8fa39516219e8dc330a2e2a4eb2c22b29fe6df32ab83ea0893f2

    • SSDEEP

      192:8+PrZsQgLVWnlCcDZUu7X5mkMeBi1eJVBVYopP:8GZsQgLslNZUuVmiE1edVTp

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks