ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ec0dda8676...76.exe

windows7-x64

7

ec0dda8676...76.exe

windows10-2004-x64

7

Sharing

General

Target

ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76
Size

70KB
Sample

241121-m78kka1dja
MD5

29f8d5c461c25dac45f36e466753563b
SHA1

d3fff2e990c56fa199c7a73aa925fb6447dcdaa1
SHA256

ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76
SHA512

0cb4460fdaa6b7472d80f0b7d39bec0468aaaecdcb65dac2f89dfca2bc0aefc248e976869d861ab7ed90e27c4b83bf12223a8c2f3adfeccf8614498d568e2092
SSDEEP

1536:ysyaXSSS9/nBRE30SbUExDIrknZWNCBbSwHlHpmieVs:rwSS9/BREiEx8rkyCBbvFHpmix

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76.exe

Resource

win7-20240903-en

windows7-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76.exe

Resource

win10v2004-20241007-en

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76
- Size
  
  70KB
- MD5
  
  29f8d5c461c25dac45f36e466753563b
- SHA1
  
  d3fff2e990c56fa199c7a73aa925fb6447dcdaa1
- SHA256
  
  ec0dda867696c4c78841691d4e47a706365eb3cbf6ebad6d52068485dc105d76
- SHA512
  
  0cb4460fdaa6b7472d80f0b7d39bec0468aaaecdcb65dac2f89dfca2bc0aefc248e976869d861ab7ed90e27c4b83bf12223a8c2f3adfeccf8614498d568e2092
- SSDEEP
  
  1536:ysyaXSSS9/nBRE30SbUExDIrknZWNCBbSwHlHpmieVs:rwSS9/BREiEx8rkyCBbvFHpmix
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy