aa1de5b3a67621b6cbde34b431bf6f08cdac2c456a707b3970bca8e8820a951d | Triage

Sharing

General

Target

8896917ff185d17138d8f32d73b597c0_exe32.exe
Size

28KB
Sample

231015-ydv8xscg8t
MD5

8896917ff185d17138d8f32d73b597c0
SHA1

157076f4393bb51976c4415a020baf6f737ffed1
SHA256

aa1de5b3a67621b6cbde34b431bf6f08cdac2c456a707b3970bca8e8820a951d
SHA512

df9998c318f190495e128c410044762f54d35b3b75d4f00bf760cf4e6801c563164a0d7b20ffdee542bf9ab7d59219c9765af7615b6ae7db06b9dbcf26b6eea2
SSDEEP

384:6Y/StmQgVCGsEYMsd9UxvRuIYpTqFOqKO9Jno6p0csytPOhdnCARQard:4qEiRZmq06noC0csm2bCUQaB

Score

7^/10

Malware Config

Targets

- Target
  
  8896917ff185d17138d8f32d73b597c0_exe32.exe
- Size
  
  28KB
- MD5
  
  8896917ff185d17138d8f32d73b597c0
- SHA1
  
  157076f4393bb51976c4415a020baf6f737ffed1
- SHA256
  
  aa1de5b3a67621b6cbde34b431bf6f08cdac2c456a707b3970bca8e8820a951d
- SHA512
  
  df9998c318f190495e128c410044762f54d35b3b75d4f00bf760cf4e6801c563164a0d7b20ffdee542bf9ab7d59219c9765af7615b6ae7db06b9dbcf26b6eea2
- SSDEEP
  
  384:6Y/StmQgVCGsEYMsd9UxvRuIYpTqFOqKO9Jno6p0csytPOhdnCARQard:4qEiRZmq06noC0csm2bCUQaB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2