90219f007f2b80bd28f019b075ad7c15e44d67e732b8992c41708c08ed75fb3b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36924f559c0b7ecca6ca62602e45a75d
Size

128KB
Sample

231231-pyex1aagdp
MD5

36924f559c0b7ecca6ca62602e45a75d
SHA1

f0611e067955d5eea4f60a88c7d6ae041de1c16d
SHA256

90219f007f2b80bd28f019b075ad7c15e44d67e732b8992c41708c08ed75fb3b
SHA512

8eefc3b2425690d8d02a65c2f6d02a8809b5bb45a216e33eb7c187703b94afc65ad49fffb9b2f6cc44cfe3dfe3d8d9f2b45013db7456453db3f659f9a7cb87ab
SSDEEP

1536:oMtdDNO6PMMybk+EsvOEZznJiuWpqJaqn2OHjBh1VCFYJixgm7djxreqB3n9067I:HjZHFx+5rDJiuWqXn2M1VWjEqB3iMI

Score

7^/10

Malware Config

Targets

- Target
  
  36924f559c0b7ecca6ca62602e45a75d
- Size
  
  128KB
- MD5
  
  36924f559c0b7ecca6ca62602e45a75d
- SHA1
  
  f0611e067955d5eea4f60a88c7d6ae041de1c16d
- SHA256
  
  90219f007f2b80bd28f019b075ad7c15e44d67e732b8992c41708c08ed75fb3b
- SHA512
  
  8eefc3b2425690d8d02a65c2f6d02a8809b5bb45a216e33eb7c187703b94afc65ad49fffb9b2f6cc44cfe3dfe3d8d9f2b45013db7456453db3f659f9a7cb87ab
- SSDEEP
  
  1536:oMtdDNO6PMMybk+EsvOEZznJiuWpqJaqn2OHjBh1VCFYJixgm7djxreqB3n9067I:HjZHFx+5rDJiuWqXn2M1VWjEqB3iMI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2