d12034b8fe059579fbe9988f614ee3838619929ea1e46430f36bd3377150f8d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c4e050aa2901e21f7ae8100efd65d5f0_exe32.exe
Size

9KB
Sample

231015-yghr1age68
MD5

c4e050aa2901e21f7ae8100efd65d5f0
SHA1

a0b9cdcb818e915eb2780b2df32fe7744c070a94
SHA256

d12034b8fe059579fbe9988f614ee3838619929ea1e46430f36bd3377150f8d2
SHA512

8dffef651709632919432fa73dc6a6b3404dcfa89d39f08c1e598631b1f8ea4ae6f9fad3969352e68ad4d5bb010665d443accb04cc5f459d19b55c01249d4245
SSDEEP

96:xQ/yyYKtUsxJbQBtgDuAnQWRIUF2CmBER9xVTkrjkPq/yfAkyukRoINEAGKhkIui:HymZSrQWRIcSSWbafKoeGKh6AWPRF+D7

Score

7^/10

Malware Config

Targets

- Target
  
  c4e050aa2901e21f7ae8100efd65d5f0_exe32.exe
- Size
  
  9KB
- MD5
  
  c4e050aa2901e21f7ae8100efd65d5f0
- SHA1
  
  a0b9cdcb818e915eb2780b2df32fe7744c070a94
- SHA256
  
  d12034b8fe059579fbe9988f614ee3838619929ea1e46430f36bd3377150f8d2
- SHA512
  
  8dffef651709632919432fa73dc6a6b3404dcfa89d39f08c1e598631b1f8ea4ae6f9fad3969352e68ad4d5bb010665d443accb04cc5f459d19b55c01249d4245
- SSDEEP
  
  96:xQ/yyYKtUsxJbQBtgDuAnQWRIUF2CmBER9xVTkrjkPq/yfAkyukRoINEAGKhkIui:HymZSrQWRIcSSWbafKoeGKh6AWPRF+D7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2