1d8a469380e3c1097161b3407d07b5d48aab149619110447ae8c0ce0a75d6b85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3f55ec87d860ff2eb3cb1c579fe7c950
Size

5KB
Sample

240103-3raatschbj
MD5

3f55ec87d860ff2eb3cb1c579fe7c950
SHA1

9cf30a01b2ccf93b849b86e6507967c8a58575c5
SHA256

1d8a469380e3c1097161b3407d07b5d48aab149619110447ae8c0ce0a75d6b85
SHA512

9ec5cef0b4eb61d8218b879c6cd8a75b91fd40b250c411bc23f53ece9baf74f525f45a87388ff5133774126308eec817cef9f794333d3c9bbb511fee35f03a99
SSDEEP

48:iisByO00YiSWx8vYWEkAlGip7doBMho6bBNtC1ZVBnb:AYiSWxXq2hxY5

Score

7^/10

Malware Config

Targets

- Target
  
  3f55ec87d860ff2eb3cb1c579fe7c950
- Size
  
  5KB
- MD5
  
  3f55ec87d860ff2eb3cb1c579fe7c950
- SHA1
  
  9cf30a01b2ccf93b849b86e6507967c8a58575c5
- SHA256
  
  1d8a469380e3c1097161b3407d07b5d48aab149619110447ae8c0ce0a75d6b85
- SHA512
  
  9ec5cef0b4eb61d8218b879c6cd8a75b91fd40b250c411bc23f53ece9baf74f525f45a87388ff5133774126308eec817cef9f794333d3c9bbb511fee35f03a99
- SSDEEP
  
  48:iisByO00YiSWx8vYWEkAlGip7doBMho6bBNtC1ZVBnb:AYiSWxXq2hxY5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2