7496e79de08b96848249f752d6a657241d7cd3e0c91bd44fc11d8fe492004a20 | Triage

Sharing

General

Target

5cf26e39f73829exeexeexeex.exe
Size

38KB
Sample

230707-zl27wacg3x
MD5

5cf26e39f73829eb68f4b0ecf53d918f
SHA1

e9aa6856c83a299906ed0a47dd5e64a3207d1bd3
SHA256

7496e79de08b96848249f752d6a657241d7cd3e0c91bd44fc11d8fe492004a20
SHA512

462c57d6ae073ed3a83894aba71a2aa6d9d0b036912c9b62f624adb15b93d118b7f6ef0df493aefcdaccedce177be6f9ad425ddb43c9dc9c67889200741d37cd
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4RELLJsdo3VmcI:vj+jsMQMOtEvwDpj5H+JswQp

Score

7^/10

Malware Config

Targets

- Target
  
  5cf26e39f73829exeexeexeex.exe
- Size
  
  38KB
- MD5
  
  5cf26e39f73829eb68f4b0ecf53d918f
- SHA1
  
  e9aa6856c83a299906ed0a47dd5e64a3207d1bd3
- SHA256
  
  7496e79de08b96848249f752d6a657241d7cd3e0c91bd44fc11d8fe492004a20
- SHA512
  
  462c57d6ae073ed3a83894aba71a2aa6d9d0b036912c9b62f624adb15b93d118b7f6ef0df493aefcdaccedce177be6f9ad425ddb43c9dc9c67889200741d37cd
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4RELLJsdo3VmcI:vj+jsMQMOtEvwDpj5H+JswQp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2