c5605d9911aa7c3308efe16370be500922f04189efe6389e13702181a6c44689 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

MSI APP Player.exe
Size

1.1MB
Sample

230310-hbzkkabh97
MD5

5570243405835e8f74dded31569a7662
SHA1

e8f45e855f9e6c3137f57e8fe1a0cc661eccb89a
SHA256

c5605d9911aa7c3308efe16370be500922f04189efe6389e13702181a6c44689
SHA512

d79b447a4d0d6b17a93924cf90fe6a37cdd86e9cd0dc0b754904b79e364635712cb521364f2f798a5c71b1e06bbe3e3d6c0b5272447ecabd38344214254012c4
SSDEEP

24576:+ivtCX8jElikZ3NzhXV0Oy5zCsP2/KzmwpSeqZUjAiH8KT0fEy:rtCX8ol9XxV07zCumRKny

Score

7^/10

Malware Config

Targets

- Target
  
  MSI APP Player.exe
- Size
  
  1.1MB
- MD5
  
  5570243405835e8f74dded31569a7662
- SHA1
  
  e8f45e855f9e6c3137f57e8fe1a0cc661eccb89a
- SHA256
  
  c5605d9911aa7c3308efe16370be500922f04189efe6389e13702181a6c44689
- SHA512
  
  d79b447a4d0d6b17a93924cf90fe6a37cdd86e9cd0dc0b754904b79e364635712cb521364f2f798a5c71b1e06bbe3e3d6c0b5272447ecabd38344214254012c4
- SSDEEP
  
  24576:+ivtCX8jElikZ3NzhXV0Oy5zCsP2/KzmwpSeqZUjAiH8KT0fEy:rtCX8ol9XxV07zCumRKny
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2