aba0f0ea5d5e61b5f00e3fc89a0e2d7b35818ba95d01757ce67b32a54960d6c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f549d968bc3046exeexeexeex.exe
Size

26KB
Sample

230711-qaxnksab91
MD5

f549d968bc30461f01763ced3259d8e1
SHA1

d2b492915e8cfc4ff703fbd8a8f9d745b1fe0d7d
SHA256

aba0f0ea5d5e61b5f00e3fc89a0e2d7b35818ba95d01757ce67b32a54960d6c1
SHA512

71290cb1a310220f2e6a51e1f9f763b488d78dcbb66f90d9cc252dcd8a2ed9ae9bd9f6f16ca250de8f2386c5946ac20847ac6779d3747c50eef5f0d9768e69e7
SSDEEP

384:bIDl1ovmXAw9PMDREhi9OUSPlRxMc/cip7IAfjDb4YeNI8WxD:bIDOw9UiaCHfjnMNjGD

Score

7^/10

Malware Config

Targets

- Target
  
  f549d968bc3046exeexeexeex.exe
- Size
  
  26KB
- MD5
  
  f549d968bc30461f01763ced3259d8e1
- SHA1
  
  d2b492915e8cfc4ff703fbd8a8f9d745b1fe0d7d
- SHA256
  
  aba0f0ea5d5e61b5f00e3fc89a0e2d7b35818ba95d01757ce67b32a54960d6c1
- SHA512
  
  71290cb1a310220f2e6a51e1f9f763b488d78dcbb66f90d9cc252dcd8a2ed9ae9bd9f6f16ca250de8f2386c5946ac20847ac6779d3747c50eef5f0d9768e69e7
- SSDEEP
  
  384:bIDl1ovmXAw9PMDREhi9OUSPlRxMc/cip7IAfjDb4YeNI8WxD:bIDOw9UiaCHfjnMNjGD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2