57d5ed52507125624a5e2a0a0b02fa7a053820929fb2a6bb85532191f58f2c15 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3061194d5616f6exeexeexeex.exe
Size

42KB
Sample

230706-rfva3sca54
MD5

3061194d5616f6dc581af2ecaede90b0
SHA1

7aa1c8d7bb6500e60da185a5e00c2373842b528a
SHA256

57d5ed52507125624a5e2a0a0b02fa7a053820929fb2a6bb85532191f58f2c15
SHA512

f0469bacf776c940664344947a4abd82920173ed475ea818c2d04b4ced02cea2852021d1a9d5a4b3c82b5ba00b76f28bee6719a8c0aeaecc1f3031bc1301248e
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uzOH7s2Jx:X6QFElP6n+gJQMOtEvwDpjBcSKm5uGP

Score

7^/10

Malware Config

Targets

- Target
  
  3061194d5616f6exeexeexeex.exe
- Size
  
  42KB
- MD5
  
  3061194d5616f6dc581af2ecaede90b0
- SHA1
  
  7aa1c8d7bb6500e60da185a5e00c2373842b528a
- SHA256
  
  57d5ed52507125624a5e2a0a0b02fa7a053820929fb2a6bb85532191f58f2c15
- SHA512
  
  f0469bacf776c940664344947a4abd82920173ed475ea818c2d04b4ced02cea2852021d1a9d5a4b3c82b5ba00b76f28bee6719a8c0aeaecc1f3031bc1301248e
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSKm5uzOH7s2Jx:X6QFElP6n+gJQMOtEvwDpjBcSKm5uGP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2