6ad9ac5ab7a0071a789065d1fe2fde732d88be8faaf4e875e3097157bee34d38 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

tmp.exe

windows7-x64

1

tmp.exe

windows10-2004-x64

7

Sharing

General

Target

tmp
Size

322KB
Sample

231123-16kn1acg58
MD5

a4212217a2e90127cf2870215d72edf5
SHA1

2fc4ad01c10a37cc88e0c7ac02fed8734c0aa6e7
SHA256

6ad9ac5ab7a0071a789065d1fe2fde732d88be8faaf4e875e3097157bee34d38
SHA512

21c11298113f5a95dc675cfa6c935ba6be26a83f19c34c5e85ede2540fe611f6138200c2376caa00ce301d5b540d1df4339a457ff3963beb5899d8854208cd01
SSDEEP

6144:jSt2tu6b3Ulc6Bxz/Bn8ETaWASeIN8Sez8cihLtKb4XM1gvKUdFebAXmCEctjlLK:O36b3wcYxTBVcSeIWSeYXBKb48MJnBdK

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

tmp.exe

Resource

win7-20231020-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

tmp.exe

Resource

win10v2004-20231020-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  tmp
- Size
  
  322KB
- MD5
  
  a4212217a2e90127cf2870215d72edf5
- SHA1
  
  2fc4ad01c10a37cc88e0c7ac02fed8734c0aa6e7
- SHA256
  
  6ad9ac5ab7a0071a789065d1fe2fde732d88be8faaf4e875e3097157bee34d38
- SHA512
  
  21c11298113f5a95dc675cfa6c935ba6be26a83f19c34c5e85ede2540fe611f6138200c2376caa00ce301d5b540d1df4339a457ff3963beb5899d8854208cd01
- SSDEEP
  
  6144:jSt2tu6b3Ulc6Bxz/Bn8ETaWASeIN8Sez8cihLtKb4XM1gvKUdFebAXmCEctjlLK:O36b3wcYxTBVcSeIWSeYXBKb48MJnBdK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy