e6f1142d31761fb10385b5f535aeebc3e0deaf71bf231fe8bb6925eb25b41759 | Triage

Sharing

General

Target

file.exe
Size

364KB
Sample

230113-jh4crsba51
MD5

857213733ec87a3449d87551b4e9b480
SHA1

50dcee9476d0a277e6594855bc2bd9d346eec34b
SHA256

e6f1142d31761fb10385b5f535aeebc3e0deaf71bf231fe8bb6925eb25b41759
SHA512

e0982c4a84bee1bbe446e082495d956e4d13d62e4b10661488a89c266ef76c14497801a2966c05fb248bb99a5c97ed474939c53a83e3dc8de6a876e755a7c9e9
SSDEEP

6144:kuGLs+bLo1Kd52UDsvg19UK7z+BsptYXX/ASf8JyI98vuZzxEmXCgyG:kuGw+bLEOsv+9tqsnYH/hfCKmZznS

Score

8^/10

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  364KB
- MD5
  
  857213733ec87a3449d87551b4e9b480
- SHA1
  
  50dcee9476d0a277e6594855bc2bd9d346eec34b
- SHA256
  
  e6f1142d31761fb10385b5f535aeebc3e0deaf71bf231fe8bb6925eb25b41759
- SHA512
  
  e0982c4a84bee1bbe446e082495d956e4d13d62e4b10661488a89c266ef76c14497801a2966c05fb248bb99a5c97ed474939c53a83e3dc8de6a876e755a7c9e9
- SSDEEP
  
  6144:kuGLs+bLo1Kd52UDsvg19UK7z+BsptYXX/ASf8JyI98vuZzxEmXCgyG:kuGw+bLEOsv+9tqsnYH/hfCKmZznS
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2