17d8c7ea236849bd3d3f7973a843e417f42dc05b597b30285e4292a0b526d85b | Triage

Sharing

General

Target

e59b55f3f73290exeexeexeex.exe
Size

85KB
Sample

230711-hvzpnseh68
MD5

e59b55f3f7329047cab00b7d45cf19d1
SHA1

17b80abc95d1c08c02de250fa1b1bc37cdc1e12b
SHA256

17d8c7ea236849bd3d3f7973a843e417f42dc05b597b30285e4292a0b526d85b
SHA512

b0123bc5e4943f3118f944a65f816605034db162e02e12a222707a5f0c5212387ecce3658f58c0343a892e4db78b12434b745863a40dfb8f8d71054d096ba57b
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNcZ5:xj+VGMOtEvwDpjubwQEI8UtzNcZ5

Score

7^/10

Malware Config

Targets

- Target
  
  e59b55f3f73290exeexeexeex.exe
- Size
  
  85KB
- MD5
  
  e59b55f3f7329047cab00b7d45cf19d1
- SHA1
  
  17b80abc95d1c08c02de250fa1b1bc37cdc1e12b
- SHA256
  
  17d8c7ea236849bd3d3f7973a843e417f42dc05b597b30285e4292a0b526d85b
- SHA512
  
  b0123bc5e4943f3118f944a65f816605034db162e02e12a222707a5f0c5212387ecce3658f58c0343a892e4db78b12434b745863a40dfb8f8d71054d096ba57b
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNcZ5:xj+VGMOtEvwDpjubwQEI8UtzNcZ5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2