05880e3e9aa32138b81b2af4f68360e2a4e0ccbc1be21bf88ad5bfb5c0c6ab4d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

11.7MB
Sample

231012-xp7knabf57
MD5

94cec419896afe4516c88a11af55540d
SHA1

5f6032d3b378c52acca0bfcbde7ec56a5d5c88fc
SHA256

05880e3e9aa32138b81b2af4f68360e2a4e0ccbc1be21bf88ad5bfb5c0c6ab4d
SHA512

76ce4ebaa922d70df4c7b0a9ad8958364e46567aa0d0836f9ddf5386cc768315a0421a81c7a6a461ab8ebd9c8ac27f57bbd7ab77c5bc322fa6f5151c376c6712
SSDEEP

196608:Id7Qn+CvpqeSer7Sfg6QxCzY2IQwXiWSfrqBZTA9ynh1nf2lv5dkSr7dFQIo1z49:Id7RCHSeCgxCzEQOioBhAqZavkSfrYzO

Score

7^/10

Malware Config

Targets

- Target
  
  tmp
- Size
  
  11.7MB
- MD5
  
  94cec419896afe4516c88a11af55540d
- SHA1
  
  5f6032d3b378c52acca0bfcbde7ec56a5d5c88fc
- SHA256
  
  05880e3e9aa32138b81b2af4f68360e2a4e0ccbc1be21bf88ad5bfb5c0c6ab4d
- SHA512
  
  76ce4ebaa922d70df4c7b0a9ad8958364e46567aa0d0836f9ddf5386cc768315a0421a81c7a6a461ab8ebd9c8ac27f57bbd7ab77c5bc322fa6f5151c376c6712
- SSDEEP
  
  196608:Id7Qn+CvpqeSer7Sfg6QxCzY2IQwXiWSfrqBZTA9ynh1nf2lv5dkSr7dFQIo1z49:Id7RCHSeCgxCzEQOioBhAqZavkSfrYzO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2