392ba9e4a216b0e687846948bcee727914ae2a91580d0ed7d9b6ab749b3418d3 | Triage

Sharing

General

Target

392ba9e4a216b0e687846948bcee727914ae2a91580d0ed7d9b6ab749b3418d3
Size

1.5MB
Sample

231008-meersabc5v
MD5

56f5fc19dcac0ad3e025a1a70de8a134
SHA1

9074a465e9ecaea11e424169e73708618cdfc651
SHA256

392ba9e4a216b0e687846948bcee727914ae2a91580d0ed7d9b6ab749b3418d3
SHA512

3dfc8369ae513affdf0c371340022183e360432b5de1e38a5904bc552e19e175e90c8861b45f9ba799d17ad31439dcd51fa0705dff892c74c617519ff2765e9a
SSDEEP

24576:NWFf9wwXe8UBH9iT6hbuZ3SuLCxfu4eyEMrOLabNZ5muy5Az6U4hfM1wWqJG3J:NQf9wwXe8eqLqflEM2ywC+U4hwuS

Score

7^/10

Malware Config

Targets

- Target
  
  392ba9e4a216b0e687846948bcee727914ae2a91580d0ed7d9b6ab749b3418d3
- Size
  
  1.5MB
- MD5
  
  56f5fc19dcac0ad3e025a1a70de8a134
- SHA1
  
  9074a465e9ecaea11e424169e73708618cdfc651
- SHA256
  
  392ba9e4a216b0e687846948bcee727914ae2a91580d0ed7d9b6ab749b3418d3
- SHA512
  
  3dfc8369ae513affdf0c371340022183e360432b5de1e38a5904bc552e19e175e90c8861b45f9ba799d17ad31439dcd51fa0705dff892c74c617519ff2765e9a
- SSDEEP
  
  24576:NWFf9wwXe8UBH9iT6hbuZ3SuLCxfu4eyEMrOLabNZ5muy5Az6U4hfM1wWqJG3J:NQf9wwXe8eqLqflEM2ywC+U4hwuS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2