a58c4256ee717337a3ea26ea01a696afb8b5c0336b36e53fa2426fa27ab3d75a | Triage

Sharing

General

Target

a58c4256ee717337a3ea26ea01a696afb8b5c0336b36e53fa2426fa27ab3d75a
Size

1.2MB
Sample

230104-d7a5maha5w
MD5

6200ef2b80c10a0894c0e7941c58aefc
SHA1

9b97cb0ca1788fff29a2a1f7563a4c3d1a5fee15
SHA256

a58c4256ee717337a3ea26ea01a696afb8b5c0336b36e53fa2426fa27ab3d75a
SHA512

a12b5605a67093dc2a470940af466aa6d82d6d116bf81d1991a2f188ed864a828b42f3561a8a74a31a0abbe3637f5113ecbbc8d3748cf87060fc37e1566665de
SSDEEP

24576:Ndw6B0HH87YdmYKEk9LC5epaKkhL3Us0oRiRaSET:jwS0VDL5epaKkhL3Us0oRiRhET

Score

8^/10

Malware Config

Targets

- Target
  
  a58c4256ee717337a3ea26ea01a696afb8b5c0336b36e53fa2426fa27ab3d75a
- Size
  
  1.2MB
- MD5
  
  6200ef2b80c10a0894c0e7941c58aefc
- SHA1
  
  9b97cb0ca1788fff29a2a1f7563a4c3d1a5fee15
- SHA256
  
  a58c4256ee717337a3ea26ea01a696afb8b5c0336b36e53fa2426fa27ab3d75a
- SHA512
  
  a12b5605a67093dc2a470940af466aa6d82d6d116bf81d1991a2f188ed864a828b42f3561a8a74a31a0abbe3637f5113ecbbc8d3748cf87060fc37e1566665de
- SSDEEP
  
  24576:Ndw6B0HH87YdmYKEk9LC5epaKkhL3Us0oRiRaSET:jwS0VDL5epaKkhL3Us0oRiRhET
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2