839ad830c82778445fe05f2a5a75283c3fa00c6c08d4e1a91260240c5b7c9685 | Triage

Sharing

General

Target

f6b746ad96ae7aexeexeexeex.exe
Size

58KB
Sample

230711-qjtchshb72
MD5

f6b746ad96ae7a5567e5e035c9a00a7e
SHA1

05f697b29a49f782dcf7dedd81f361206068ca64
SHA256

839ad830c82778445fe05f2a5a75283c3fa00c6c08d4e1a91260240c5b7c9685
SHA512

ae7b44cea357c03c414b8f0fc51795788eca42aa2bb8b3a768a27624387663bce22d04072c31c721666be35c93a4f0605c7e72b2ee59043cedf17ebf6481856a
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylcbgMv6zcN81:79mqyNhQMOtEvwDpjBPY7xv3g1MvkO81

Score

7^/10

Malware Config

Targets

- Target
  
  f6b746ad96ae7aexeexeexeex.exe
- Size
  
  58KB
- MD5
  
  f6b746ad96ae7a5567e5e035c9a00a7e
- SHA1
  
  05f697b29a49f782dcf7dedd81f361206068ca64
- SHA256
  
  839ad830c82778445fe05f2a5a75283c3fa00c6c08d4e1a91260240c5b7c9685
- SHA512
  
  ae7b44cea357c03c414b8f0fc51795788eca42aa2bb8b3a768a27624387663bce22d04072c31c721666be35c93a4f0605c7e72b2ee59043cedf17ebf6481856a
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylcbgMv6zcN81:79mqyNhQMOtEvwDpjBPY7xv3g1MvkO81
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2