7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

7dd2dd7b7f...38.exe

windows7-x64

7

7dd2dd7b7f...38.exe

windows10-2004-x64

7

Sharing

General

Target

7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638
Size

37KB
Sample

240630-3dtsbayeqd
MD5

be18e6809bc428a07024448cbbad0040
SHA1

f40ef33d6624021f3a32fd3eedead1dc4d0db823
SHA256

7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638
SHA512

ba55d8f045dd9867e6b6a88b38b8ee42503453cb29c89b1d3abeee42b2d9b297b507e1e7896d06e4d2f4f1e24f430bc60c84bcc0853a32460888c8ede3ef7961
SSDEEP

384:uBT+/jvJ7+gFrJk04OMcYyJXFpOQGR9zos2clAKLHRN74u56/R9zZwu9z9:WOZ+gr36qlXOQ69zbjlAAX5e9zP

Score

7^/10

Static task

static1

Behavioral task

behavioral1

Sample

7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638.exe

Resource

win7-20240611-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638
- Size
  
  37KB
- MD5
  
  be18e6809bc428a07024448cbbad0040
- SHA1
  
  f40ef33d6624021f3a32fd3eedead1dc4d0db823
- SHA256
  
  7dd2dd7b7ff209d2d19d45ee5f945e66d9daf387f141a210c611788b925b1638
- SHA512
  
  ba55d8f045dd9867e6b6a88b38b8ee42503453cb29c89b1d3abeee42b2d9b297b507e1e7896d06e4d2f4f1e24f430bc60c84bcc0853a32460888c8ede3ef7961
- SSDEEP
  
  384:uBT+/jvJ7+gFrJk04OMcYyJXFpOQGR9zos2clAKLHRN74u56/R9zZwu9z9:WOZ+gr36qlXOQ69zbjlAAX5e9zP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Creates a large amount of network flows
  This may indicate a network scan to discover remotely running services.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Network Service Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy