b09e39c2fb59c0fb084895abf11a35a87ced378ae1001fdd6c626110357d9b93 | Triage

Sharing

General

Target

xlabs.exe
Size

1.7MB
Sample

230515-v2kwbafb4x
MD5

57c1057a55fbfb033050a362392021ff
SHA1

37dd6b2652de1f00b24ccc8677e6b114f147d0ec
SHA256

b09e39c2fb59c0fb084895abf11a35a87ced378ae1001fdd6c626110357d9b93
SHA512

6b02d83d5d40382fa6839fb0d396188e151fad1cb38ab6a3eab6e148e238fd84fb17c6474402b0aba2b77a19cce39ad9fb79af58af16231368cbe7d0aa59274d
SSDEEP

24576:vedP2ynGlLyPoRlgFwRx5sDjyN/FLakDGCo7w/Dh0lhSMXlEw4fo7oUzL4q:vqP2rka58jyNtLDDaj+PELn

Score

8^/10

Malware Config

Targets

- Target
  
  xlabs.exe
- Size
  
  1.7MB
- MD5
  
  57c1057a55fbfb033050a362392021ff
- SHA1
  
  37dd6b2652de1f00b24ccc8677e6b114f147d0ec
- SHA256
  
  b09e39c2fb59c0fb084895abf11a35a87ced378ae1001fdd6c626110357d9b93
- SHA512
  
  6b02d83d5d40382fa6839fb0d396188e151fad1cb38ab6a3eab6e148e238fd84fb17c6474402b0aba2b77a19cce39ad9fb79af58af16231368cbe7d0aa59274d
- SSDEEP
  
  24576:vedP2ynGlLyPoRlgFwRx5sDjyN/FLakDGCo7w/Dh0lhSMXlEw4fo7oUzL4q:vqP2rka58jyNtLDDaj+PELn
Score

8^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2