2bfe16100af653d012b5b833cf2ed6431ae1ca9660fab081679f92da34fb5f57 | Triage

Sharing

General

Target

4th Hire Soa Remittance.exe
Size

617KB
Sample

230519-ge513sfc65
MD5

854e22aa8f838bc5638f401e1d6faaf0
SHA1

95792a0d5c497777fe283f5b9eb74f14e2e407ce
SHA256

2bfe16100af653d012b5b833cf2ed6431ae1ca9660fab081679f92da34fb5f57
SHA512

8b2238ab1c74794fcbf23241475c35fbecd5482aa48d49f0e1cbd706656d0997b3aa4b4eb3ebf47eca56663cf57527d7d59c85740adf748917366315376bdcfa
SSDEEP

12288:eopnFv5yczago+/3FIqbipq/HQzIbPKgObpb5LYU/gD+jU/ecZBAYq4:ZVV1o+/e4jHQzQlObpFLYV+jJWBf

Score

7^/10

Malware Config

Targets

- Target
  
  4th Hire Soa Remittance.exe
- Size
  
  617KB
- MD5
  
  854e22aa8f838bc5638f401e1d6faaf0
- SHA1
  
  95792a0d5c497777fe283f5b9eb74f14e2e407ce
- SHA256
  
  2bfe16100af653d012b5b833cf2ed6431ae1ca9660fab081679f92da34fb5f57
- SHA512
  
  8b2238ab1c74794fcbf23241475c35fbecd5482aa48d49f0e1cbd706656d0997b3aa4b4eb3ebf47eca56663cf57527d7d59c85740adf748917366315376bdcfa
- SSDEEP
  
  12288:eopnFv5yczago+/3FIqbipq/HQzIbPKgObpb5LYU/gD+jU/ecZBAYq4:ZVV1o+/e4jHQzQlObpFLYV+jJWBf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2