915cc801be400a7d3f5c37e8fc72337bec5e9d0894a16185c5a81e547e624b3c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8f1de82ad29d96exeexeexeex.exe
Size

327KB
Sample

230708-vzrabagd42
MD5

8f1de82ad29d96f4d6708e57f0019734
SHA1

cb27c56697aae119e04cf017aec5a938435c3b90
SHA256

915cc801be400a7d3f5c37e8fc72337bec5e9d0894a16185c5a81e547e624b3c
SHA512

cdf68f10e8cd7b02044ae7450ab34fca2037f0a6d0bd2e6f97445ea49a49168ae28150acb2a3129ccae4312f184a411ca0a4c0795aa417c768fc466d08806ad1
SSDEEP

6144:x2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG8KgbPzDh:x2TFafJiHCWBWPMjVWrXK0

Score

7^/10

Malware Config

Targets

- Target
  
  8f1de82ad29d96exeexeexeex.exe
- Size
  
  327KB
- MD5
  
  8f1de82ad29d96f4d6708e57f0019734
- SHA1
  
  cb27c56697aae119e04cf017aec5a938435c3b90
- SHA256
  
  915cc801be400a7d3f5c37e8fc72337bec5e9d0894a16185c5a81e547e624b3c
- SHA512
  
  cdf68f10e8cd7b02044ae7450ab34fca2037f0a6d0bd2e6f97445ea49a49168ae28150acb2a3129ccae4312f184a411ca0a4c0795aa417c768fc466d08806ad1
- SSDEEP
  
  6144:x2+JS2sFafI8U0obHCW/2a7XQcsPMjVWrG8KgbPzDh:x2TFafJiHCWBWPMjVWrXK0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2