304cbd6f5879343c68561f1f167415d9d70c24e011c1ec114fca4e885e5a9ae7 | Triage

Sharing

General

Target

file.exe
Size

2.5MB
Sample

231011-qr2zmaca56
MD5

c853a830fa2530a233e4a1eaf84b4273
SHA1

e6dc164da3b49a6c30380773bb2bca70aa937cff
SHA256

304cbd6f5879343c68561f1f167415d9d70c24e011c1ec114fca4e885e5a9ae7
SHA512

d48da0b670fab03f558355d3869bda08deec5d6ff20264814498da0786968c62819457782e986df8bd95258d6216b6837ae7f7d90d7a719303c7abd571896af4
SSDEEP

49152:kA5ujhDMCeR3qwglCPz6ObJJoFj5OkuVoHKHEZD:kA5uj+wCL6VFF1HKHEV

Score

7^/10

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  2.5MB
- MD5
  
  c853a830fa2530a233e4a1eaf84b4273
- SHA1
  
  e6dc164da3b49a6c30380773bb2bca70aa937cff
- SHA256
  
  304cbd6f5879343c68561f1f167415d9d70c24e011c1ec114fca4e885e5a9ae7
- SHA512
  
  d48da0b670fab03f558355d3869bda08deec5d6ff20264814498da0786968c62819457782e986df8bd95258d6216b6837ae7f7d90d7a719303c7abd571896af4
- SSDEEP
  
  49152:kA5ujhDMCeR3qwglCPz6ObJJoFj5OkuVoHKHEZD:kA5uj+wCL6VFF1HKHEV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2