b4751e8835d79d9f6dfcbc3268251602cbf16dc145b378432f2e2ccd28fb5c19 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

59f6a9cdffd35ba23eb82ac53e3cf80c
Size

819KB
Sample

240114-b9lm2ahhfq
MD5

59f6a9cdffd35ba23eb82ac53e3cf80c
SHA1

75226ac740ead7017703b2229118c5b59064962f
SHA256

b4751e8835d79d9f6dfcbc3268251602cbf16dc145b378432f2e2ccd28fb5c19
SHA512

9aedbbee7ba33e5512f7ad0b4db1576c5a3094a6d01ec77f56207f9944ee379bee02261d8caab8e6a904473855368748eb467e957ea29ba835666b272850af0e
SSDEEP

12288:do7ajr61wCudm/FfNYJ9HYpwpMuvRJIKTyR+8Csu3Lo+47TRAXlJTb4fGXm2QoJ2:dBwfiJ9HYf+jz47TRW4fr

Score

7^/10

Malware Config

Targets

- Target
  
  59f6a9cdffd35ba23eb82ac53e3cf80c
- Size
  
  819KB
- MD5
  
  59f6a9cdffd35ba23eb82ac53e3cf80c
- SHA1
  
  75226ac740ead7017703b2229118c5b59064962f
- SHA256
  
  b4751e8835d79d9f6dfcbc3268251602cbf16dc145b378432f2e2ccd28fb5c19
- SHA512
  
  9aedbbee7ba33e5512f7ad0b4db1576c5a3094a6d01ec77f56207f9944ee379bee02261d8caab8e6a904473855368748eb467e957ea29ba835666b272850af0e
- SSDEEP
  
  12288:do7ajr61wCudm/FfNYJ9HYpwpMuvRJIKTyR+8Csu3Lo+47TRAXlJTb4fGXm2QoJ2:dBwfiJ9HYf+jz47TRW4fr
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2