38e5b424bcea95cec0c08e5670b79be57b9b2ebce4027a028cbea7a38f220774 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3ad6e8fae291b808a43f2054f92f1cce
Size

391KB
Sample

231231-xzlqyacgfp
MD5

3ad6e8fae291b808a43f2054f92f1cce
SHA1

56abe4f8e88ad3d2c3a81b2455e3614e30f2b07a
SHA256

38e5b424bcea95cec0c08e5670b79be57b9b2ebce4027a028cbea7a38f220774
SHA512

8e4cd460cdfaea33804fa0e3e09a1f7ce35cbd41b48bda4b7490a515e4dbf4af17ef4b37bc85492aef2b202856e35ab3f65adbfbb801cc2376414f357f910c16
SSDEEP

6144:YgKg26gJbaRkNJvY2k0bsRkcQRkfIwps+69yV9Goa0ixEHzBmcrBlVZU+BgfQlGU:2bm8qN0bFciRwf69GxiKTBvVZXgfQf7

Score

7^/10

Malware Config

Targets

- Target
  
  3ad6e8fae291b808a43f2054f92f1cce
- Size
  
  391KB
- MD5
  
  3ad6e8fae291b808a43f2054f92f1cce
- SHA1
  
  56abe4f8e88ad3d2c3a81b2455e3614e30f2b07a
- SHA256
  
  38e5b424bcea95cec0c08e5670b79be57b9b2ebce4027a028cbea7a38f220774
- SHA512
  
  8e4cd460cdfaea33804fa0e3e09a1f7ce35cbd41b48bda4b7490a515e4dbf4af17ef4b37bc85492aef2b202856e35ab3f65adbfbb801cc2376414f357f910c16
- SSDEEP
  
  6144:YgKg26gJbaRkNJvY2k0bsRkcQRkfIwps+69yV9Goa0ixEHzBmcrBlVZU+BgfQlGU:2bm8qN0bFciRwf69GxiKTBvVZXgfQf7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2