099395e206f9d91e015727bd4f216b5739bf61cd02f9e6e95ff9f281d8df3709 | Triage

Sharing

General

Target

h1523455.exe
Size

218KB
Sample

230605-e4yl7aeg88
MD5

18210cc958ee0309c565ac21b4f01e0c
SHA1

07da405c9f1c6a8ea19d94ab06056420a2c18d50
SHA256

099395e206f9d91e015727bd4f216b5739bf61cd02f9e6e95ff9f281d8df3709
SHA512

574d5c3c259d24c6c2aef8026992dae066c744db5df57853cc37046c088f633f87bcd12cf3a2c0495631001f52f981e3efa93e4a27dfca621975a63a77e564a6
SSDEEP

3072:meTRJ0kHbnpN23kQKp5XzutZXKGrpeN84LuZAIybiy3xEfbi:FTR2AnpN2wDurXBeBuZAIMEj

Score

7^/10

Malware Config

Targets

- Target
  
  h1523455.exe
- Size
  
  218KB
- MD5
  
  18210cc958ee0309c565ac21b4f01e0c
- SHA1
  
  07da405c9f1c6a8ea19d94ab06056420a2c18d50
- SHA256
  
  099395e206f9d91e015727bd4f216b5739bf61cd02f9e6e95ff9f281d8df3709
- SHA512
  
  574d5c3c259d24c6c2aef8026992dae066c744db5df57853cc37046c088f633f87bcd12cf3a2c0495631001f52f981e3efa93e4a27dfca621975a63a77e564a6
- SSDEEP
  
  3072:meTRJ0kHbnpN23kQKp5XzutZXKGrpeN84LuZAIybiy3xEfbi:FTR2AnpN2wDurXBeBuZAIMEj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2