f9f783b6c35710d843852030469850448477ef6e21a9c4c95183592d3bc44613 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

54853d49175fc0d00b1ba5ab4851b541
Size

1.6MB
Sample

240111-zebfkshaf2
MD5

54853d49175fc0d00b1ba5ab4851b541
SHA1

cc5854620969a610462e24233f50567f80499812
SHA256

f9f783b6c35710d843852030469850448477ef6e21a9c4c95183592d3bc44613
SHA512

2ba55f458722da4ae79e9743a573426853533a1118b4ae23cdb05d7265e7a837df81074aa54680e47bdc62912907876496bb7ccf47ccd6a854df89f578dbe940
SSDEEP

49152:7uWjEn50aUTQK+zgebLd+1Mmf9t4q9mCWzhT:7usEnCRTwg8sMi4e3ahT

Score

7^/10

Malware Config

Targets

- Target
  
  54853d49175fc0d00b1ba5ab4851b541
- Size
  
  1.6MB
- MD5
  
  54853d49175fc0d00b1ba5ab4851b541
- SHA1
  
  cc5854620969a610462e24233f50567f80499812
- SHA256
  
  f9f783b6c35710d843852030469850448477ef6e21a9c4c95183592d3bc44613
- SHA512
  
  2ba55f458722da4ae79e9743a573426853533a1118b4ae23cdb05d7265e7a837df81074aa54680e47bdc62912907876496bb7ccf47ccd6a854df89f578dbe940
- SSDEEP
  
  49152:7uWjEn50aUTQK+zgebLd+1Mmf9t4q9mCWzhT:7usEnCRTwg8sMi4e3ahT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2