49def20b2a4d94bcc8d60580ebdef5714b4da10a397b2e6fd461759373a00b51 | Triage

Sharing

General

Target

f3924826c5a6a7exeexeexeex.exe
Size

39KB
Sample

230711-m149kage63
MD5

f3924826c5a6a762cb9a96fa2a149cd9
SHA1

4a343f3bd22589a4c291539ff564f06e7b9ac5cc
SHA256

49def20b2a4d94bcc8d60580ebdef5714b4da10a397b2e6fd461759373a00b51
SHA512

acea9c132725057bcee013d27df0477c37860eabbefb35d83639692d8e2e8016d5c03c179a39d1b3fe418ba3c4a8af82463c0223cdd95476bd3caeca65501c0f
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaXKvm:V6QFElP6n+gMQMOtEvwDpjya0m

Score

7^/10

Malware Config

Targets

- Target
  
  f3924826c5a6a7exeexeexeex.exe
- Size
  
  39KB
- MD5
  
  f3924826c5a6a762cb9a96fa2a149cd9
- SHA1
  
  4a343f3bd22589a4c291539ff564f06e7b9ac5cc
- SHA256
  
  49def20b2a4d94bcc8d60580ebdef5714b4da10a397b2e6fd461759373a00b51
- SHA512
  
  acea9c132725057bcee013d27df0477c37860eabbefb35d83639692d8e2e8016d5c03c179a39d1b3fe418ba3c4a8af82463c0223cdd95476bd3caeca65501c0f
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaXKvm:V6QFElP6n+gMQMOtEvwDpjya0m
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2