d1261db1e7363fa6bf2f19702e72babbc2aea3ad3018e2e6e0303ad1149203cb | Triage

Sharing

General

Target

13899cefa9b050exeexeexeex.exe
Size

88KB
Sample

230705-vnkcmafh5y
MD5

13899cefa9b050044b966df344cfa02c
SHA1

04ead5a76afc6d6a0f0b9b373cf0fe3021548fc4
SHA256

d1261db1e7363fa6bf2f19702e72babbc2aea3ad3018e2e6e0303ad1149203cb
SHA512

189da6b54c3c239a6ea5a135213015efb6b015e5a066a2c6503e37f1bdeba7b018de66e3779a9eedca8eae6e4413ddbf02a13086c55f6663c3de5b8fadc8ce4e
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpf:vCjsIOtEvwDpj5H8zPW

Score

7^/10

Malware Config

Targets

- Target
  
  13899cefa9b050exeexeexeex.exe
- Size
  
  88KB
- MD5
  
  13899cefa9b050044b966df344cfa02c
- SHA1
  
  04ead5a76afc6d6a0f0b9b373cf0fe3021548fc4
- SHA256
  
  d1261db1e7363fa6bf2f19702e72babbc2aea3ad3018e2e6e0303ad1149203cb
- SHA512
  
  189da6b54c3c239a6ea5a135213015efb6b015e5a066a2c6503e37f1bdeba7b018de66e3779a9eedca8eae6e4413ddbf02a13086c55f6663c3de5b8fadc8ce4e
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNieRpf:vCjsIOtEvwDpj5H8zPW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2