02aa77aac42c70b11d13e100b5e53664ca3e3a14aedb58ebee41a5fe23f4c8e0 | Triage

Sharing

General

Target

14f41c9034b57e860634f9555c5c1606
Size

339KB
Sample

231225-lqds7ahfhq
MD5

14f41c9034b57e860634f9555c5c1606
SHA1

829b5e32639f43539e32f0ab8731abbf2fb31413
SHA256

02aa77aac42c70b11d13e100b5e53664ca3e3a14aedb58ebee41a5fe23f4c8e0
SHA512

72aec605b8a75e514c00bd6baa32b595b934881304c40ed3c1d017c0b003fb728fe5739f3b23359682343660a508b4a07eef1198b1175dd2584cb1439f01c9fd
SSDEEP

6144:moy8kjcJwXQo3kQm414Xgw0uEsqgtVIA2pDSkoCS5e5WZLLPrViim:on3kQR43PwgtVIAKSkoCSY5ezw

Score

7^/10

Malware Config

Targets

- Target
  
  14f41c9034b57e860634f9555c5c1606
- Size
  
  339KB
- MD5
  
  14f41c9034b57e860634f9555c5c1606
- SHA1
  
  829b5e32639f43539e32f0ab8731abbf2fb31413
- SHA256
  
  02aa77aac42c70b11d13e100b5e53664ca3e3a14aedb58ebee41a5fe23f4c8e0
- SHA512
  
  72aec605b8a75e514c00bd6baa32b595b934881304c40ed3c1d017c0b003fb728fe5739f3b23359682343660a508b4a07eef1198b1175dd2584cb1439f01c9fd
- SSDEEP
  
  6144:moy8kjcJwXQo3kQm414Xgw0uEsqgtVIA2pDSkoCS5e5WZLLPrViim:on3kQR43PwgtVIAKSkoCSY5ezw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2