ec40c29ee0b9b7c7747900f580b2d7d8793e1d62d7bf90ef53712113131e14ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41a85397933ee018a38cf4be0fce61ae
Size

1.0MB
Sample

240104-xl4plahaep
MD5

41a85397933ee018a38cf4be0fce61ae
SHA1

4b39173f2288c928aa2e8efe8ffd0443922da5f0
SHA256

ec40c29ee0b9b7c7747900f580b2d7d8793e1d62d7bf90ef53712113131e14ad
SHA512

30a28f0d59bc7792aedf3dcdad629a715c6a34fc00cec73e9a4a3dfeb8f0be37ad9ca2c79c130096aeea5fd42a29d5694b92fc66fcdf57d59783fb3a728c84e3
SSDEEP

24576:O0AmEiIz6d+NrC/t6eXCisorTZzMfELIcz+Xdz:OOIpdw9TA8F+N

Score

7^/10

Malware Config

Targets

- Target
  
  41a85397933ee018a38cf4be0fce61ae
- Size
  
  1.0MB
- MD5
  
  41a85397933ee018a38cf4be0fce61ae
- SHA1
  
  4b39173f2288c928aa2e8efe8ffd0443922da5f0
- SHA256
  
  ec40c29ee0b9b7c7747900f580b2d7d8793e1d62d7bf90ef53712113131e14ad
- SHA512
  
  30a28f0d59bc7792aedf3dcdad629a715c6a34fc00cec73e9a4a3dfeb8f0be37ad9ca2c79c130096aeea5fd42a29d5694b92fc66fcdf57d59783fb3a728c84e3
- SSDEEP
  
  24576:O0AmEiIz6d+NrC/t6eXCisorTZzMfELIcz+Xdz:OOIpdw9TA8F+N
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2