346632c348c1351ff6413520c6a1c08cb3bb5016d1ecdd0372dcaf57a3929ab8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

infected2023041504.rar
Size

1.8MB
Sample

230415-pazx9sfe8x
MD5

553cff0a90cc80cfae8d9c331613bf5f
SHA1

8f4af407dae2e1481e3314f1017866b3a9c0ecdd
SHA256

346632c348c1351ff6413520c6a1c08cb3bb5016d1ecdd0372dcaf57a3929ab8
SHA512

130b2d189ba4c17a7af18c196019bf3414a9a29cea4e6ee800d43c96ce5a83cbb8da690258779f6d025829dad93de45f95d1612be86834518b289397cf2665e3
SSDEEP

49152:CpPc6aV8DSokofvMHSezNU9KoSVZLjy0zOj3:AcQhxINcYVZLjng

Score

7^/10

Malware Config

Targets

- Target
  
  infected2023041504/未命名文件夹/图片.exe
- Size
  
  4.9MB
- MD5
  
  02dc758a661f23ac2a7f5bcf5d4bac20
- SHA1
  
  4d9b5c7b16320393b609a9a2a9a7cc484203cd91
- SHA256
  
  4d8d84a5a8272ba7dd8f54c46b88aa6b4f60baf163225051ee413dfb020636cb
- SHA512
  
  7c4aaa2d3e1c025bab65b263cc3e2a407cfad032fdf98aaf72d0ee06d0c493ff9eba3b146b8306e6d875cb615327d166d4b3f579f2901d7a701229d8ae898b0d
- SSDEEP
  
  49152:GygpGj34zZIURY8EcB+/lByrivQOjOHCC2QLlIdihNMMdxsNVqT5TsuAIFeMyn+:OpG4+OEcB+/lByrivQPCC2QUJWlqMy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  infected2023041504/未命名文件夹/截图.exe
- Size
  
  916KB
- MD5
  
  f6746687c408ea7b0cb3947d3c57ad04
- SHA1
  
  80bba28731f1473f36d25fdc9a1a9086e9b4e5cd
- SHA256
  
  37b34fdec8f5b0fb71f768523551b488816d60dbc52cce1e351550da88a14bec
- SHA512
  
  0838cf20a94b21d5bfa157d90af79a269bc2343531f386244de7de8f5a1128aa9e2633525ba0465ba611260dce78ac0912d60499cacb3abf5dbab2d83531139e
- SSDEEP
  
  12288:PhUlUviaIgaL4zWE3E3tshKFyJ5rCwmUtzsdbWTv83o9fYdS7l:PhUlEiaId8SE3EdshksnmUtzsZWTYI+2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral3 behavioral4

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4