9d30c658ca18193448e07745911143aec39f88d0cfa64c57b38c84a5433d55ef | Triage

Sharing

General

Target

3dc20e46cc3a830466a4f3816589d787
Size

210KB
Sample

240101-ys84bsbgd9
MD5

3dc20e46cc3a830466a4f3816589d787
SHA1

3b28cf05fb338afcab3e1f0799065f6b2468a6d6
SHA256

9d30c658ca18193448e07745911143aec39f88d0cfa64c57b38c84a5433d55ef
SHA512

b5f02a89ab6d42eb30d3fb6978ce68ec28e1c9640f9bc4e7c9604a68db8019a0105a8d021af0e2f9b40838f6c0808c467995c17a72622c3b65424a600d607b6d
SSDEEP

1536:cSuwW46/lo1z54YBwhI9UxL4yzxEt3a5LKEXmkwEeCVbRrsc4AdKUMbR:cSK431z54T69mL48Exas8hwEecqdR

Score

8^/10

Malware Config

Targets

- Target
  
  3dc20e46cc3a830466a4f3816589d787
- Size
  
  210KB
- MD5
  
  3dc20e46cc3a830466a4f3816589d787
- SHA1
  
  3b28cf05fb338afcab3e1f0799065f6b2468a6d6
- SHA256
  
  9d30c658ca18193448e07745911143aec39f88d0cfa64c57b38c84a5433d55ef
- SHA512
  
  b5f02a89ab6d42eb30d3fb6978ce68ec28e1c9640f9bc4e7c9604a68db8019a0105a8d021af0e2f9b40838f6c0808c467995c17a72622c3b65424a600d607b6d
- SSDEEP
  
  1536:cSuwW46/lo1z54YBwhI9UxL4yzxEt3a5LKEXmkwEeCVbRrsc4AdKUMbR:cSK431z54T69mL48Exas8hwEecqdR
Score

8^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2