1ee59c4430328af3138dfe408aea6dc32f12d063b51a37ebf1f603b68f4c595c | Triage

Sharing

General

Target

a4f1dac57e64443c9b2ad86f7c9eb904.bin
Size

20KB
Sample

230324-cdltlabe72
MD5

f14a4c193529e2f73f3e0f1a721c787e
SHA1

bd1a108d72852ff130ad110607171e497404950f
SHA256

1ee59c4430328af3138dfe408aea6dc32f12d063b51a37ebf1f603b68f4c595c
SHA512

146ea822287ee7a54638784a1027116e022e8c4c1ebe743b14ae18554602abaaf2d38d6888da64ddab2271d23c4b314313b30de1b7f8ad42043d19de4926ae08
SSDEEP

384:ETqdzyab9VXKKZLf9N+D0AvvttihXQPiJXKl1tGsVeaGhZaAzQez1IV5:5uoVXKuPAqhXUG6iasrBI7

Score

7^/10

Malware Config

Targets

- Target
  
  ed115f25a76a710015df55b8930e4b8533394e426caa0b173599f44e19593093.exe
- Size
  
  37KB
- MD5
  
  a4f1dac57e64443c9b2ad86f7c9eb904
- SHA1
  
  d1464c0292bc873317ff5de308bd66ceb44c89c3
- SHA256
  
  ed115f25a76a710015df55b8930e4b8533394e426caa0b173599f44e19593093
- SHA512
  
  39fdcce28f3ccb568e78a3a723648487521692d36adc61f7327e2291423d84459433680aa340f8c02548f35e69d8c855bcc3c090d85dfa26ce2caa7920e2b725
- SSDEEP
  
  768:O8kr2D6AKlLO+SNhBgCHDck4MV0ggv8KoETBB9D3xvjHhx4eC7Xj8Qc1El:B/6A0q5HDR4oWBx3xrBx41z8QcKl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2