6b427b1504789e873508ce2a6d7182a1f67da7f3239a9614780c10dbaf2a771c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

40bef257e97db9a75eeb5c4d8a2d1e63
Size

204KB
Sample

240104-nml2haeeem
MD5

40bef257e97db9a75eeb5c4d8a2d1e63
SHA1

0d6ce1e6a3ef3599ead5846c8d8c52c54fc998dd
SHA256

6b427b1504789e873508ce2a6d7182a1f67da7f3239a9614780c10dbaf2a771c
SHA512

54fb03fb7f78a0af18ffa544c8d94ca54ef4ebf02ccd34c0c11ecd90c109428a459f4bab4c00d6f61002b69708d422baea4590234bfb21f30f47c1854d11770f
SSDEEP

3072:5ePgCctxGv4QcU9KQ2BBA2waPxhtmolfK:VCctxGsWKQ2Bx5xvbK

Score

7^/10

Malware Config

Targets

- Target
  
  40bef257e97db9a75eeb5c4d8a2d1e63
- Size
  
  204KB
- MD5
  
  40bef257e97db9a75eeb5c4d8a2d1e63
- SHA1
  
  0d6ce1e6a3ef3599ead5846c8d8c52c54fc998dd
- SHA256
  
  6b427b1504789e873508ce2a6d7182a1f67da7f3239a9614780c10dbaf2a771c
- SHA512
  
  54fb03fb7f78a0af18ffa544c8d94ca54ef4ebf02ccd34c0c11ecd90c109428a459f4bab4c00d6f61002b69708d422baea4590234bfb21f30f47c1854d11770f
- SSDEEP
  
  3072:5ePgCctxGv4QcU9KQ2BBA2waPxhtmolfK:VCctxGsWKQ2Bx5xvbK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2