404f251747bd266402a87c4070a1795380cb28c3304b476ddace5be3aed64617 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

598010142c07fa2355dc2c8a0b747fae.bin
Size

535KB
Sample

240115-dbb22sghd5
MD5

598010142c07fa2355dc2c8a0b747fae
SHA1

45b66add33a02e81e0b911b4098bfd5ec6d2b795
SHA256

404f251747bd266402a87c4070a1795380cb28c3304b476ddace5be3aed64617
SHA512

f96370597721be85c397871fea242f2ff1b414578dc90393e2bc163f6805aa229228ec7891895010b106c0638eb4d101d00ad8252c184e5de94a3e016e560d6b
SSDEEP

12288:si4g+yU+0pAiv+nzWBYbhcK2qVpZoRt3UIVlzTWXZirTFxUlvjosTdcG93Dn:si4gXn0pD+CBihNZTmR6slzT60UlvjRZ

Score

7^/10

Malware Config

Targets

- Target
  
  598010142c07fa2355dc2c8a0b747fae.bin
- Size
  
  535KB
- MD5
  
  598010142c07fa2355dc2c8a0b747fae
- SHA1
  
  45b66add33a02e81e0b911b4098bfd5ec6d2b795
- SHA256
  
  404f251747bd266402a87c4070a1795380cb28c3304b476ddace5be3aed64617
- SHA512
  
  f96370597721be85c397871fea242f2ff1b414578dc90393e2bc163f6805aa229228ec7891895010b106c0638eb4d101d00ad8252c184e5de94a3e016e560d6b
- SSDEEP
  
  12288:si4g+yU+0pAiv+nzWBYbhcK2qVpZoRt3UIVlzTWXZirTFxUlvjosTdcG93Dn:si4gXn0pD+CBihNZTmR6slzT60UlvjRZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2