57d2ef514528bc868e8ff6d13ef923be6cb6dfc8d32eeb86b3c5ea4d0bba83b8 | Triage

Sharing

General

Target

57d2ef514528bc868e8ff6d13ef923be6cb6dfc8d32eeb86b3c5ea4d0bba83b8
Size

1.2MB
Sample

230311-khlndsha39
MD5

a732e410749e77290a34d4ea0b291e36
SHA1

db66aad288db6c9858bd75ede2d8400cecb606e4
SHA256

57d2ef514528bc868e8ff6d13ef923be6cb6dfc8d32eeb86b3c5ea4d0bba83b8
SHA512

857ad8fb13e84d015c959ac5c6068df3d2294131ee1ae01d475af7a676a1fb0207a4b7d1a6b7765efa6f989f555e10f32cb6bb9850b6761e71d84813664acac5
SSDEEP

24576:gJr8tE+gHqIL4TY5hfoShnyNx2zs4hX4Pl69nObNdtxjRkO0Y0x:gJ4NIXPfBhnyH2I69nObPt5dEx

Score

7^/10

Malware Config

Targets

- Target
  
  57d2ef514528bc868e8ff6d13ef923be6cb6dfc8d32eeb86b3c5ea4d0bba83b8
- Size
  
  1.2MB
- MD5
  
  a732e410749e77290a34d4ea0b291e36
- SHA1
  
  db66aad288db6c9858bd75ede2d8400cecb606e4
- SHA256
  
  57d2ef514528bc868e8ff6d13ef923be6cb6dfc8d32eeb86b3c5ea4d0bba83b8
- SHA512
  
  857ad8fb13e84d015c959ac5c6068df3d2294131ee1ae01d475af7a676a1fb0207a4b7d1a6b7765efa6f989f555e10f32cb6bb9850b6761e71d84813664acac5
- SSDEEP
  
  24576:gJr8tE+gHqIL4TY5hfoShnyNx2zs4hX4Pl69nObNdtxjRkO0Y0x:gJ4NIXPfBhnyH2I69nObPt5dEx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1