cd908e832019fb106464e56bba335775e226869e79651c05ef2728dbd9774e75 | Triage

Sharing

General

Target

en_windows_10_enterprise_ltsc_2019_x64_dvd_74865958.exe
Size

95.1MB
Sample

231115-yazryadf63
MD5

929c7d22f846f80f837e7fa14868c8f3
SHA1

0df49904e08c4fcd537c91c3709db74b15de2ca8
SHA256

cd908e832019fb106464e56bba335775e226869e79651c05ef2728dbd9774e75
SHA512

644ac8ba51eda8503d0a0d580e1c012c7272f7698213446b544fda9cfe602b304fdb551623d1802ec403ad3070b9e32a6dd9e31ced04b10ceba652aaed737619
SSDEEP

1572864:nu3tJGgWTcaZRoPvh9yrmGBGGHl9s2btsHv0BW76tNUa1+AmW9tGyrWP95Ie:gY1Qas9KNBll9s2btIv1OXoyinIe

Score

7^/10

Malware Config

Targets

- Target
  
  en_windows_10_enterprise_ltsc_2019_x64_dvd_74865958.exe
- Size
  
  95.1MB
- MD5
  
  929c7d22f846f80f837e7fa14868c8f3
- SHA1
  
  0df49904e08c4fcd537c91c3709db74b15de2ca8
- SHA256
  
  cd908e832019fb106464e56bba335775e226869e79651c05ef2728dbd9774e75
- SHA512
  
  644ac8ba51eda8503d0a0d580e1c012c7272f7698213446b544fda9cfe602b304fdb551623d1802ec403ad3070b9e32a6dd9e31ced04b10ceba652aaed737619
- SSDEEP
  
  1572864:nu3tJGgWTcaZRoPvh9yrmGBGGHl9s2btsHv0BW76tNUa1+AmW9tGyrWP95Ie:gY1Qas9KNBll9s2btIv1OXoyinIe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2