1547da939011ea2ef264378252871b9e128f4659fe0d3471f0b5eb1be3a0ac95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

12830a896de61168723525f3a14289db
Size

15KB
Sample

231219-newwqscfe6
MD5

12830a896de61168723525f3a14289db
SHA1

637a02cc09a215c2e24ec4b254eca83d3cdc578e
SHA256

1547da939011ea2ef264378252871b9e128f4659fe0d3471f0b5eb1be3a0ac95
SHA512

2ac389ded8790f1a5fe2c65e71d3d1c911e0da1a4b337454ad1cd995b1e8222cf4a8b838f9e70d3314e6385229587785c2026c6f0ac99e62a673ace6e3f949fa
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/TyQR:hDXWipuE+K3/SSHgxm/Tp

Score

7^/10

Malware Config

Targets

- Target
  
  12830a896de61168723525f3a14289db
- Size
  
  15KB
- MD5
  
  12830a896de61168723525f3a14289db
- SHA1
  
  637a02cc09a215c2e24ec4b254eca83d3cdc578e
- SHA256
  
  1547da939011ea2ef264378252871b9e128f4659fe0d3471f0b5eb1be3a0ac95
- SHA512
  
  2ac389ded8790f1a5fe2c65e71d3d1c911e0da1a4b337454ad1cd995b1e8222cf4a8b838f9e70d3314e6385229587785c2026c6f0ac99e62a673ace6e3f949fa
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/TyQR:hDXWipuE+K3/SSHgxm/Tp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2