20e0e64d3589e026c4821fd3d25638af38259c498f2b33cff11766b23ed0547b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

DTM14.exe
Size

633KB
Sample

231011-sbekhagd35
MD5

a62ce0ae0a97978d95e48c205e3a8685
SHA1

884b0d523edcf89c30791d3b25e71c92e5fc128c
SHA256

20e0e64d3589e026c4821fd3d25638af38259c498f2b33cff11766b23ed0547b
SHA512

ac27333c9813f3af65075843f80e6a9750b267bdfdf2ca33f6622baf59fa6101750e3ee1e306bb7d0d27e55a604dac55fb81c6e703e82b390240563cae2d84c7
SSDEEP

12288:mfyDsO+Hdsy7MfcFFfBVxsMAuTpWI771R6d:mDO+HdsAMEFF511WI7776d

Score

7^/10

Malware Config

Targets

- Target
  
  DTM14.exe
- Size
  
  633KB
- MD5
  
  a62ce0ae0a97978d95e48c205e3a8685
- SHA1
  
  884b0d523edcf89c30791d3b25e71c92e5fc128c
- SHA256
  
  20e0e64d3589e026c4821fd3d25638af38259c498f2b33cff11766b23ed0547b
- SHA512
  
  ac27333c9813f3af65075843f80e6a9750b267bdfdf2ca33f6622baf59fa6101750e3ee1e306bb7d0d27e55a604dac55fb81c6e703e82b390240563cae2d84c7
- SSDEEP
  
  12288:mfyDsO+Hdsy7MfcFFfBVxsMAuTpWI771R6d:mDO+HdsAMEFF511WI7776d
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2