edab4e1fe778f7f27fe0d909a4b638106ba6ef3557c85d84446a368f8b3969cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

edfa7de07d73deexeexeexeex.exe
Size

35KB
Sample

230711-j7hscsgf7x
MD5

edfa7de07d73de0b01cc46dfb5143649
SHA1

579081c115f99044b0100cc07f7a6592b5bbbf6c
SHA256

edab4e1fe778f7f27fe0d909a4b638106ba6ef3557c85d84446a368f8b3969cb
SHA512

1adf895c9da82298a448b15d4b4193dc1a3a6fe0671665f8d15f7b1601e3b48f80c05a4c579e94d9d0708433e657f8e9cb284b06e328cc6efcf3d3a1ccac325b
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3Yxp4t8kNAA0dm:bgX4zYcgTEu6QOaryfjqDDw303kX0dm

Score

7^/10

Malware Config

Targets

- Target
  
  edfa7de07d73deexeexeexeex.exe
- Size
  
  35KB
- MD5
  
  edfa7de07d73de0b01cc46dfb5143649
- SHA1
  
  579081c115f99044b0100cc07f7a6592b5bbbf6c
- SHA256
  
  edab4e1fe778f7f27fe0d909a4b638106ba6ef3557c85d84446a368f8b3969cb
- SHA512
  
  1adf895c9da82298a448b15d4b4193dc1a3a6fe0671665f8d15f7b1601e3b48f80c05a4c579e94d9d0708433e657f8e9cb284b06e328cc6efcf3d3a1ccac325b
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3Yxp4t8kNAA0dm:bgX4zYcgTEu6QOaryfjqDDw303kX0dm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2