151e0c7d2ab641dd8542b706bcb8dc0eb9d3ce94f178a8803aeafc31546a2fa9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1c894f380d0edd64f1c746c38d3caaa
Size

14KB
Sample

231219-11n48sedfp
MD5

b1c894f380d0edd64f1c746c38d3caaa
SHA1

bd91a643fab55f19b2b7d6d9c8de27ed1eff108f
SHA256

151e0c7d2ab641dd8542b706bcb8dc0eb9d3ce94f178a8803aeafc31546a2fa9
SHA512

f2a19f0b71fb2181fc4466a336316d7ba1c2c4981e33c91debb2495c6f00b2685b5587586d78c1a0f38cf1bc16c29730f2193f640c093971195884bc2b30acf9
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhO:hDXWipuE+K3/SSHgxE

Score

7^/10

Malware Config

Targets

- Target
  
  b1c894f380d0edd64f1c746c38d3caaa
- Size
  
  14KB
- MD5
  
  b1c894f380d0edd64f1c746c38d3caaa
- SHA1
  
  bd91a643fab55f19b2b7d6d9c8de27ed1eff108f
- SHA256
  
  151e0c7d2ab641dd8542b706bcb8dc0eb9d3ce94f178a8803aeafc31546a2fa9
- SHA512
  
  f2a19f0b71fb2181fc4466a336316d7ba1c2c4981e33c91debb2495c6f00b2685b5587586d78c1a0f38cf1bc16c29730f2193f640c093971195884bc2b30acf9
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhO:hDXWipuE+K3/SSHgxE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2