55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

55cb5fa83a...e5.exe

windows7-x64

7

55cb5fa83a...e5.exe

windows10-2004-x64

7

Sharing

General

Target

55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5
Size

24.1MB
Sample

241121-lmn5ravqem
MD5

3bca758ce1d5c3858ac8e10a2a38b514
SHA1

0f9de1a1b10f85941f89dbf603cc587323e2c003
SHA256

55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5
SHA512

1ff9f246d91931832fda34437e6453edf2bbc5af45214f4d55a9ee615a73ed912fe6dfa6680158ce4af46fc4c4dc95a7b573a0d59c5a78f24a8617a3bc0f7c55
SSDEEP

786432:D3Li0WVudC2IXJ4nSeS2jEfqJQTsrYT3sbmz:fivoierplTssbm

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5.exe

Resource

win7-20240729-en

windows7-x64

19 signatures

150 seconds

Behavioral task

behavioral2

Sample

55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

22 signatures

150 seconds

Malware Config

Targets

- Target
  
  55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5
- Size
  
  24.1MB
- MD5
  
  3bca758ce1d5c3858ac8e10a2a38b514
- SHA1
  
  0f9de1a1b10f85941f89dbf603cc587323e2c003
- SHA256
  
  55cb5fa83a98b9d7cc70cad5fe59f44f8d48956b363df2fbf7ad649b9c4970e5
- SHA512
  
  1ff9f246d91931832fda34437e6453edf2bbc5af45214f4d55a9ee615a73ed912fe6dfa6680158ce4af46fc4c4dc95a7b573a0d59c5a78f24a8617a3bc0f7c55
- SSDEEP
  
  786432:D3Li0WVudC2IXJ4nSeS2jEfqJQTsrYT3sbmz:fivoierplTssbm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Blocklisted process makes network request
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy