Overview

overview

7

Static

static

3

c85c3ac09b...9d.exe

windows7-x64

7

c85c3ac09b...9d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c85c3ac09b39cbc9e852328b5f238f58b05d99d78f40ddce4a5c2ba3ee3fad9d

  • Size

    65KB

  • Sample

    241120-d8b4bavmbl

  • MD5

    5d7d70d71a24dd6ba50da66027256b27

  • SHA1

    c1c9f30ded31f805a0b1b258491a87fc2d6fc339

  • SHA256

    c85c3ac09b39cbc9e852328b5f238f58b05d99d78f40ddce4a5c2ba3ee3fad9d

  • SHA512

    9df1cb14f0d343a59d0933197b80d0bb387f7fa4fa46cbbddf6249be17d21f001e6427bb124d13e83a90b3c24f537c4d4cd5d6fd5c7bb5f6db834c1a722a90fa

  • SSDEEP

    1536:PLXzYi/jbOshaV6tSipX/4cAlRBFmH6J9cB+iK:PLXzYWXS4/NE3mH6J9Ok

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      c85c3ac09b39cbc9e852328b5f238f58b05d99d78f40ddce4a5c2ba3ee3fad9d

    • Size

      65KB

    • MD5

      5d7d70d71a24dd6ba50da66027256b27

    • SHA1

      c1c9f30ded31f805a0b1b258491a87fc2d6fc339

    • SHA256

      c85c3ac09b39cbc9e852328b5f238f58b05d99d78f40ddce4a5c2ba3ee3fad9d

    • SHA512

      9df1cb14f0d343a59d0933197b80d0bb387f7fa4fa46cbbddf6249be17d21f001e6427bb124d13e83a90b3c24f537c4d4cd5d6fd5c7bb5f6db834c1a722a90fa

    • SSDEEP

      1536:PLXzYi/jbOshaV6tSipX/4cAlRBFmH6J9cB+iK:PLXzYWXS4/NE3mH6J9Ok

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks