a604df571e589bc1b62c459d65385aaa912885b44f9fd0b95740f83cf2bd0499 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a604df571e589bc1b62c459d65385aaa912885b44f9fd0b95740f83cf2bd0499
Size

206KB
Sample

230607-2y3qaahe2v
MD5

1524529074b684629fdcdd82faa7895e
SHA1

432ef25e37ecac84ae6376b53ba9e2f33b3b3b48
SHA256

a604df571e589bc1b62c459d65385aaa912885b44f9fd0b95740f83cf2bd0499
SHA512

9ba5817bea8d8f01fd6797cf1d50e8f0765f7199815b266c873d2527cf6860f929b10841079cf17cd176d58f7a086dd1cb99486f73ce435e6c9397aa3e15c997
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  a604df571e589bc1b62c459d65385aaa912885b44f9fd0b95740f83cf2bd0499
- Size
  
  206KB
- MD5
  
  1524529074b684629fdcdd82faa7895e
- SHA1
  
  432ef25e37ecac84ae6376b53ba9e2f33b3b3b48
- SHA256
  
  a604df571e589bc1b62c459d65385aaa912885b44f9fd0b95740f83cf2bd0499
- SHA512
  
  9ba5817bea8d8f01fd6797cf1d50e8f0765f7199815b266c873d2527cf6860f929b10841079cf17cd176d58f7a086dd1cb99486f73ce435e6c9397aa3e15c997
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1