2c4ba44d52a53e4d92870785dbf7af5acb3a75eba577186a2fd53c2a3d295708 | Triage

Sharing

General

Target

21b7eaf0e158a7fc7bae28673213c543
Size

15KB
Sample

231219-pmtxsaddf5
MD5

21b7eaf0e158a7fc7bae28673213c543
SHA1

f4fd3ab5c763c2fd72dcc4b89c2672dc157d2482
SHA256

2c4ba44d52a53e4d92870785dbf7af5acb3a75eba577186a2fd53c2a3d295708
SHA512

1b3eada18f21206a150e0e76282099ee519d2466baa3627e9daa4df3800ec00b63ad6ca1053f55cd67b79a308ed74f63290b6d1d95e7bccfddd75f6c9d1ae0a6
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxXE:hDXWipuE+K3/SSHgxmHtE

Score

7^/10

Malware Config

Targets

- Target
  
  21b7eaf0e158a7fc7bae28673213c543
- Size
  
  15KB
- MD5
  
  21b7eaf0e158a7fc7bae28673213c543
- SHA1
  
  f4fd3ab5c763c2fd72dcc4b89c2672dc157d2482
- SHA256
  
  2c4ba44d52a53e4d92870785dbf7af5acb3a75eba577186a2fd53c2a3d295708
- SHA512
  
  1b3eada18f21206a150e0e76282099ee519d2466baa3627e9daa4df3800ec00b63ad6ca1053f55cd67b79a308ed74f63290b6d1d95e7bccfddd75f6c9d1ae0a6
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxXE:hDXWipuE+K3/SSHgxmHtE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2