37727b89ca91b90e8580075152703683f7c69c0e38198d74538b8f9631947f86 | Triage

Sharing

General

Target

9b09eaeba4920efdf524b612b4d94ea0.bin
Size

24KB
Sample

230719-capq3sfg9t
MD5

352c953e61adbb710cd9c4a68a19045e
SHA1

43cff0708b0e451832f592de4b03c5b215b8235e
SHA256

37727b89ca91b90e8580075152703683f7c69c0e38198d74538b8f9631947f86
SHA512

030c95d26a7235e5699ce276906f8bd5e7ef08ca916991a08d7a4739577e75560ed565cfd57b647a5aa73d2e4cd56b6fff88bf0a7752cd93844636cd6bbf18bf
SSDEEP

768:b7I8IWTUOgLEoNMRVn8UicXvgHVHf0PvoAK:vIbmFgYou3MkvgHVHfQJK

Score

7^/10

Malware Config

Targets

- Target
  
  05e51d3973e78aab88cc51f3d565e2e5d0e9a4703e1161cc8b400ae05f5ab74d.bin
- Size
  
  56KB
- MD5
  
  9b09eaeba4920efdf524b612b4d94ea0
- SHA1
  
  50f7982db96fbb9b348fdc3a56cfcaa797f02a08
- SHA256
  
  05e51d3973e78aab88cc51f3d565e2e5d0e9a4703e1161cc8b400ae05f5ab74d
- SHA512
  
  050c9ff51f9751aa97ea818d96211be6f667b1fc24a30cbd25ce66273417576104b5d3c13ec7c2c6c5e838453b5d9edfdef041f3b48f689cc5d0e4c4ef96304a
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/cMFqeo9e1dWSg:ZzFbxmLPWQMOtEvwDpj38lD/cMAPOu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2