bade156b8eb1c4adf0bb331210ba79f9c9a54fdf434fbd1af240451252a56019 | Triage

Sharing

General

Target

bade156b8eb1c4adf0bb331210ba79f9c9a54fdf434fbd1af240451252a56019
Size

1.6MB
Sample

231012-msfw1afg75
MD5

ccf141b287b56de4f8b2dadc5c9e80d7
SHA1

2595d744e3d3dd4daea8969e636cef59e7c43e8c
SHA256

bade156b8eb1c4adf0bb331210ba79f9c9a54fdf434fbd1af240451252a56019
SHA512

62e1047e648bf36744fb063e14d18e9aad94d6c220e40ef5a4ffe7db79d43227cbe33d56bc674de913897b7159144cfd3b2bfa0372db8e04cca352a73b6c253f
SSDEEP

24576:8cbD/e1EBFQvdyHQCCH2itrMOK7073vNzwrhyFvad3A7hJH2HSfl4WfpJYC1WrQf:8cbi6QdyB+rn/9wlCvhoS7pNWrQE9i

Score

7^/10

Malware Config

Targets

- Target
  
  bade156b8eb1c4adf0bb331210ba79f9c9a54fdf434fbd1af240451252a56019
- Size
  
  1.6MB
- MD5
  
  ccf141b287b56de4f8b2dadc5c9e80d7
- SHA1
  
  2595d744e3d3dd4daea8969e636cef59e7c43e8c
- SHA256
  
  bade156b8eb1c4adf0bb331210ba79f9c9a54fdf434fbd1af240451252a56019
- SHA512
  
  62e1047e648bf36744fb063e14d18e9aad94d6c220e40ef5a4ffe7db79d43227cbe33d56bc674de913897b7159144cfd3b2bfa0372db8e04cca352a73b6c253f
- SSDEEP
  
  24576:8cbD/e1EBFQvdyHQCCH2itrMOK7073vNzwrhyFvad3A7hJH2HSfl4WfpJYC1WrQf:8cbi6QdyB+rn/9wlCvhoS7pNWrQE9i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2