b436d14fcdbb045bcd2baa231ae360bf67cc8ea937c970e47b59b62350753d06 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4037ee80ce6a1exeexeexeex.exe
Size

39KB
Sample

230709-twmbhsfb9v
MD5

b4037ee80ce6a1881790836cecfb5c8c
SHA1

bd3a28b39e2efc66f808b06c62d6c5747eec6676
SHA256

b436d14fcdbb045bcd2baa231ae360bf67cc8ea937c970e47b59b62350753d06
SHA512

bf51971048a20b84fd7f379767a7d00c66f30fad0fbe9d60a002dc332967f4615eb9f7feadf04e884bc2e18c0a62d500845829e513e4661eacb048dcd5374303
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaXKve:V6QFElP6n+gMQMOtEvwDpjya0e

Score

7^/10

Malware Config

Targets

- Target
  
  b4037ee80ce6a1exeexeexeex.exe
- Size
  
  39KB
- MD5
  
  b4037ee80ce6a1881790836cecfb5c8c
- SHA1
  
  bd3a28b39e2efc66f808b06c62d6c5747eec6676
- SHA256
  
  b436d14fcdbb045bcd2baa231ae360bf67cc8ea937c970e47b59b62350753d06
- SHA512
  
  bf51971048a20b84fd7f379767a7d00c66f30fad0fbe9d60a002dc332967f4615eb9f7feadf04e884bc2e18c0a62d500845829e513e4661eacb048dcd5374303
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaXKve:V6QFElP6n+gMQMOtEvwDpjya0e
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2