Overview

overview

7

Static

static

3

e29cc4cf4b...03.exe

windows7-x64

7

e29cc4cf4b...03.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e29cc4cf4bbb5dcbc7da1da23a2919db0b8321893eddaa913bdfa3fd9bb7cd03

  • Size

    18KB

  • Sample

    241121-l7vg9s1hrk

  • MD5

    8752947f5ae80b0ca427488ebd98e898

  • SHA1

    8e3e79a8e7ab6bbe9b62c8da34c5b13f73506144

  • SHA256

    e29cc4cf4bbb5dcbc7da1da23a2919db0b8321893eddaa913bdfa3fd9bb7cd03

  • SHA512

    27385430dffeba3f4ce2ec8e295f49fae4a092ebc9a22f8d93c26cbac54575cb9ab8933c3c5aea7cb51277aefe1b69f49287cfc68d0776a0f0e3a7b6899e5d62

  • SSDEEP

    384:r6eHIAx0pqNgHvRtoyhAkeKE7pDKbR6hcdBYpBmLE:r6eHIMgPRtzykeKE7pkRpTE

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      e29cc4cf4bbb5dcbc7da1da23a2919db0b8321893eddaa913bdfa3fd9bb7cd03

    • Size

      18KB

    • MD5

      8752947f5ae80b0ca427488ebd98e898

    • SHA1

      8e3e79a8e7ab6bbe9b62c8da34c5b13f73506144

    • SHA256

      e29cc4cf4bbb5dcbc7da1da23a2919db0b8321893eddaa913bdfa3fd9bb7cd03

    • SHA512

      27385430dffeba3f4ce2ec8e295f49fae4a092ebc9a22f8d93c26cbac54575cb9ab8933c3c5aea7cb51277aefe1b69f49287cfc68d0776a0f0e3a7b6899e5d62

    • SSDEEP

      384:r6eHIAx0pqNgHvRtoyhAkeKE7pDKbR6hcdBYpBmLE:r6eHIMgPRtzykeKE7pkRpTE

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks