eb1520559de8a4f15c6a9dc6dac8ff69285ada9321c756a2b0273ec0c38f9409 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f61c23cd1d2ac20b28846f15005c206
Size

27KB
Sample

240110-db6xescdej
MD5

4f61c23cd1d2ac20b28846f15005c206
SHA1

1741b679d356e63e2b5fa5ad9952189b3b3a070e
SHA256

eb1520559de8a4f15c6a9dc6dac8ff69285ada9321c756a2b0273ec0c38f9409
SHA512

115873349c616439ee8e7ceca7d10f416f350afd63c9979c7cee257bfe0590c7c9b19953f74ec58e977977bd9228fc4959174f888419da0b8c816df38cd8da7f
SSDEEP

384:wC5azxFqgqja4u5oK5iGKSdJBnOLna/h/Gyp0u+vlV4EuOdGlhLnlgM11jlPtOp9:wiazxujNSdJBnOGVGqlz9Op6yH

Score

7^/10

Malware Config

Targets

- Target
  
  4f61c23cd1d2ac20b28846f15005c206
- Size
  
  27KB
- MD5
  
  4f61c23cd1d2ac20b28846f15005c206
- SHA1
  
  1741b679d356e63e2b5fa5ad9952189b3b3a070e
- SHA256
  
  eb1520559de8a4f15c6a9dc6dac8ff69285ada9321c756a2b0273ec0c38f9409
- SHA512
  
  115873349c616439ee8e7ceca7d10f416f350afd63c9979c7cee257bfe0590c7c9b19953f74ec58e977977bd9228fc4959174f888419da0b8c816df38cd8da7f
- SSDEEP
  
  384:wC5azxFqgqja4u5oK5iGKSdJBnOLna/h/Gyp0u+vlV4EuOdGlhLnlgM11jlPtOp9:wiazxujNSdJBnOGVGqlz9Op6yH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2