892c47720067aeba15e34a01c99bdca1bab885ab71772ee0dde70380261b64b4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5471cb3a0b120dexeexeexeex.exe
Size

46KB
Sample

230707-ytgqgacb7x
MD5

5471cb3a0b120d8872f2bac62b222323
SHA1

71250c1835bf487263614437348900cd75274be8
SHA256

892c47720067aeba15e34a01c99bdca1bab885ab71772ee0dde70380261b64b4
SHA512

9dab9a69bff56897da0d8400a0f84d70a332ff85db401013202143ac620791e6f24d0a2abeae8dda7f06ea0f442daac32ba619b1d845a045302cd93a5a105b21
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4Uu6EIZPm8M:bIDOw9a0DwitDwIZbM

Score

7^/10

Malware Config

Targets

- Target
  
  5471cb3a0b120dexeexeexeex.exe
- Size
  
  46KB
- MD5
  
  5471cb3a0b120d8872f2bac62b222323
- SHA1
  
  71250c1835bf487263614437348900cd75274be8
- SHA256
  
  892c47720067aeba15e34a01c99bdca1bab885ab71772ee0dde70380261b64b4
- SHA512
  
  9dab9a69bff56897da0d8400a0f84d70a332ff85db401013202143ac620791e6f24d0a2abeae8dda7f06ea0f442daac32ba619b1d845a045302cd93a5a105b21
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4Uu6EIZPm8M:bIDOw9a0DwitDwIZbM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2