17072c7f8cbab8c6a7b4eb7198c5ce0d60423e549a8e9dd2dbf13f21b9e4a447 | Triage

Sharing

General

Target

e61dda4e808a7aexeexeexeex.exe
Size

32KB
Sample

230711-hw267aga8z
MD5

e61dda4e808a7a61be77b67fc64bd2f8
SHA1

4ba4a34a0588391b19add42365e363f6fce49752
SHA256

17072c7f8cbab8c6a7b4eb7198c5ce0d60423e549a8e9dd2dbf13f21b9e4a447
SHA512

49f05d7ac9895654f389537bd3a236027fb7cfb95ca38ef8869f7242af82cbfc7905e7d661f29566810030038ab057b2e32fca4cd09edd9e47e415fb592b23da
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjB9iYp8:X6QFElP6n+gJQMOtEvwDpjBH8

Score

7^/10

Malware Config

Targets

- Target
  
  e61dda4e808a7aexeexeexeex.exe
- Size
  
  32KB
- MD5
  
  e61dda4e808a7a61be77b67fc64bd2f8
- SHA1
  
  4ba4a34a0588391b19add42365e363f6fce49752
- SHA256
  
  17072c7f8cbab8c6a7b4eb7198c5ce0d60423e549a8e9dd2dbf13f21b9e4a447
- SHA512
  
  49f05d7ac9895654f389537bd3a236027fb7cfb95ca38ef8869f7242af82cbfc7905e7d661f29566810030038ab057b2e32fca4cd09edd9e47e415fb592b23da
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjB9iYp8:X6QFElP6n+gJQMOtEvwDpjBH8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2