ba85556540eca0e84486ab5861a7bc21ca4e7af4a627afb3209b686b58b4b1b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1af843a1c4e871exeexeexeex.exe
Size

75KB
Sample

230705-ww5h7sfa87
MD5

1af843a1c4e871b77be4069afa09d992
SHA1

41981e173b84935a96b06fa48dced6c00f8c1994
SHA256

ba85556540eca0e84486ab5861a7bc21ca4e7af4a627afb3209b686b58b4b1b0
SHA512

357b878396c62c6d9ee983ea39b4efbb8aae15970043a1204fda7c236321b9f3a89040042e88c2f65710f5f9a4e808d44092f0dafabd209cd8b3183077058ba2
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWa5:vCjsIOtEvwDpj5H9YvQd21

Score

7^/10

Malware Config

Targets

- Target
  
  1af843a1c4e871exeexeexeex.exe
- Size
  
  75KB
- MD5
  
  1af843a1c4e871b77be4069afa09d992
- SHA1
  
  41981e173b84935a96b06fa48dced6c00f8c1994
- SHA256
  
  ba85556540eca0e84486ab5861a7bc21ca4e7af4a627afb3209b686b58b4b1b0
- SHA512
  
  357b878396c62c6d9ee983ea39b4efbb8aae15970043a1204fda7c236321b9f3a89040042e88c2f65710f5f9a4e808d44092f0dafabd209cd8b3183077058ba2
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWa5:vCjsIOtEvwDpj5H9YvQd21
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2