9adb99e8650bab9e07206f93d3ef23984395a12c9c6dd17dc34823c12aa034a5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

64fe4105b1f43044606aa234e9a1ab61
Size

492KB
Sample

240118-kvr1yaghc9
MD5

64fe4105b1f43044606aa234e9a1ab61
SHA1

3ae1e0a97b757d6617abec1c84f3666abd8fd186
SHA256

9adb99e8650bab9e07206f93d3ef23984395a12c9c6dd17dc34823c12aa034a5
SHA512

ce2d2afbe02959b19964829270554215e10ee2f497a79b6702ef5cf8c26c44f502993396e00685e48564caf17cbedcd5e3b361bb2b8a73d705d381129757c623
SSDEEP

6144:BME1nmg1tDbJ5621YNzigK30Y/xJS4AGgnVUdLrgg81gxaJZ6b1XHZZTHaOTfFDq:ugnJzRxJXA5Sngg84b13TV5ON

Score

7^/10

Malware Config

Targets

- Target
  
  64fe4105b1f43044606aa234e9a1ab61
- Size
  
  492KB
- MD5
  
  64fe4105b1f43044606aa234e9a1ab61
- SHA1
  
  3ae1e0a97b757d6617abec1c84f3666abd8fd186
- SHA256
  
  9adb99e8650bab9e07206f93d3ef23984395a12c9c6dd17dc34823c12aa034a5
- SHA512
  
  ce2d2afbe02959b19964829270554215e10ee2f497a79b6702ef5cf8c26c44f502993396e00685e48564caf17cbedcd5e3b361bb2b8a73d705d381129757c623
- SSDEEP
  
  6144:BME1nmg1tDbJ5621YNzigK30Y/xJS4AGgnVUdLrgg81gxaJZ6b1XHZZTHaOTfFDq:ugnJzRxJXA5Sngg84b13TV5ON
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2