5a2b48a69e626d6eadbfe0ffc90af996e988333119e445afb42f7b00fc97baae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

147fec435fb0b6exeexeexeex.exe
Size

35KB
Sample

230705-vtaelsga2v
MD5

147fec435fb0b62ab8f9e66f4c70deba
SHA1

649c8181d7b8256b8fa950e64a3d0e47522ea72c
SHA256

5a2b48a69e626d6eadbfe0ffc90af996e988333119e445afb42f7b00fc97baae
SHA512

a9c585d7ec02aec707e583337f4157f46c31e6d4be49fd9da77157ecc0b38e413080b82795b4a02553d8ef78013f9da0e5ce5f970c6b9a48f0e6afbff3d028ba
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+0vJsghbZ/bi:bgX4zYcgTEu6QOaryfjqDlC6JtbZ/O

Score

7^/10

Malware Config

Targets

- Target
  
  147fec435fb0b6exeexeexeex.exe
- Size
  
  35KB
- MD5
  
  147fec435fb0b62ab8f9e66f4c70deba
- SHA1
  
  649c8181d7b8256b8fa950e64a3d0e47522ea72c
- SHA256
  
  5a2b48a69e626d6eadbfe0ffc90af996e988333119e445afb42f7b00fc97baae
- SHA512
  
  a9c585d7ec02aec707e583337f4157f46c31e6d4be49fd9da77157ecc0b38e413080b82795b4a02553d8ef78013f9da0e5ce5f970c6b9a48f0e6afbff3d028ba
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf6XT+0vJsghbZ/bi:bgX4zYcgTEu6QOaryfjqDlC6JtbZ/O
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2