93cc1fba9d343b81b140bbdaf020f08f99516ad6d9cc744ab08e2ae7b17d9104 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

6.0MB
Sample

240103-prq2padaap
MD5

15702f668b6a94a3a7e1ca3f384d10fc
SHA1

5a6a616d0e53fdd8f4757834ae2b54060258c86c
SHA256

93cc1fba9d343b81b140bbdaf020f08f99516ad6d9cc744ab08e2ae7b17d9104
SHA512

dc34effc3c8202e963d56f86a9caf2262db3363978dcccefd1fd7552b40a1257d9bcc98ade320f5b7f9eecf9be0d249d2d178788ed85a3e6f09ac1fa840a5150
SSDEEP

98304:aEm6d0WhVUvX7p+YGRaX0v2o1Ulu/Cm4miYvuQjamo5TEHGHMSZENCcStR1S6yQn:LUjpUR/1Ul5mzjoqmHMSMIR1J3CSP

Score

7^/10

Malware Config

Targets

- Target
  
  tmp
- Size
  
  6.0MB
- MD5
  
  15702f668b6a94a3a7e1ca3f384d10fc
- SHA1
  
  5a6a616d0e53fdd8f4757834ae2b54060258c86c
- SHA256
  
  93cc1fba9d343b81b140bbdaf020f08f99516ad6d9cc744ab08e2ae7b17d9104
- SHA512
  
  dc34effc3c8202e963d56f86a9caf2262db3363978dcccefd1fd7552b40a1257d9bcc98ade320f5b7f9eecf9be0d249d2d178788ed85a3e6f09ac1fa840a5150
- SSDEEP
  
  98304:aEm6d0WhVUvX7p+YGRaX0v2o1Ulu/Cm4miYvuQjamo5TEHGHMSZENCcStR1S6yQn:LUjpUR/1Ul5mzjoqmHMSMIR1J3CSP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2