ef370a4028f2ed031b07879aff90220c8f7273dea8eddc6411d1a705ec6a03cf | Triage

Sharing

General

Target

b19f4980c2107f79e3adad6f33dbac77
Size

15KB
Sample

231219-11ewkahdh9
MD5

b19f4980c2107f79e3adad6f33dbac77
SHA1

ebc4b20932f70448c0dd9bc3a5ed01c08a6c6ede
SHA256

ef370a4028f2ed031b07879aff90220c8f7273dea8eddc6411d1a705ec6a03cf
SHA512

2bdd8b38f08072061dff96ec7850be145d9733d8d0164c345532f52d4ceeba2924f78fde0fc3915f90395bf9bb3c33da197d732c820e9b0bb725c6d873e9ed48
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlN:hDXWipuE+K3/SSHgxmlN

Score

7^/10

Malware Config

Targets

- Target
  
  b19f4980c2107f79e3adad6f33dbac77
- Size
  
  15KB
- MD5
  
  b19f4980c2107f79e3adad6f33dbac77
- SHA1
  
  ebc4b20932f70448c0dd9bc3a5ed01c08a6c6ede
- SHA256
  
  ef370a4028f2ed031b07879aff90220c8f7273dea8eddc6411d1a705ec6a03cf
- SHA512
  
  2bdd8b38f08072061dff96ec7850be145d9733d8d0164c345532f52d4ceeba2924f78fde0fc3915f90395bf9bb3c33da197d732c820e9b0bb725c6d873e9ed48
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlN:hDXWipuE+K3/SSHgxmlN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2