863fffa534c5da7d8b34fa4f5159cbe032f0fff7a8f39117c76639d3dce7adec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07490005538ba72036bb0b1ab7ee8227
Size

14KB
Sample

231219-mkrnjaeba3
MD5

07490005538ba72036bb0b1ab7ee8227
SHA1

df2a11c4f29be4405aa24521e469e04ad096e929
SHA256

863fffa534c5da7d8b34fa4f5159cbe032f0fff7a8f39117c76639d3dce7adec
SHA512

9af9480a92d4c7f55aaeb08353baccdf193976ac2798b31eb0b03e6c3fbe3c7d9b921170683c956b2c0e2b3c3680feb0f8a8ca3d9b8f0a19b94390382e3e25ed
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR08:hDXWipuE+K3/SSHgx48

Score

7^/10

Malware Config

Targets

- Target
  
  07490005538ba72036bb0b1ab7ee8227
- Size
  
  14KB
- MD5
  
  07490005538ba72036bb0b1ab7ee8227
- SHA1
  
  df2a11c4f29be4405aa24521e469e04ad096e929
- SHA256
  
  863fffa534c5da7d8b34fa4f5159cbe032f0fff7a8f39117c76639d3dce7adec
- SHA512
  
  9af9480a92d4c7f55aaeb08353baccdf193976ac2798b31eb0b03e6c3fbe3c7d9b921170683c956b2c0e2b3c3680feb0f8a8ca3d9b8f0a19b94390382e3e25ed
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR08:hDXWipuE+K3/SSHgx48
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2