37f8ec0c7788b458d69999ed5ba30080c53588c9ae3f9b080acf7114c7457cf4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8d605f9d7ce8338457d8020bbec72a3.bin
Size

34KB
Sample

240124-efhwtshhbr
MD5

c8d605f9d7ce8338457d8020bbec72a3
SHA1

5f707df7e97ad75487e0a436c03d0725b0323c63
SHA256

37f8ec0c7788b458d69999ed5ba30080c53588c9ae3f9b080acf7114c7457cf4
SHA512

763b316b1511a942ea6d08644f319684f07692f1e64e5061e6e1d6302b68901bc0d69fbc7db6900f072f96f75edb103e399975e1c1bdfecb5314e779de3a52c4
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lqTX:bA74zYcgT/Ekd0ryfjPIunqpeNswmxTX

Score

7^/10

Malware Config

Targets

- Target
  
  c8d605f9d7ce8338457d8020bbec72a3.bin
- Size
  
  34KB
- MD5
  
  c8d605f9d7ce8338457d8020bbec72a3
- SHA1
  
  5f707df7e97ad75487e0a436c03d0725b0323c63
- SHA256
  
  37f8ec0c7788b458d69999ed5ba30080c53588c9ae3f9b080acf7114c7457cf4
- SHA512
  
  763b316b1511a942ea6d08644f319684f07692f1e64e5061e6e1d6302b68901bc0d69fbc7db6900f072f96f75edb103e399975e1c1bdfecb5314e779de3a52c4
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lqTX:bA74zYcgT/Ekd0ryfjPIunqpeNswmxTX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2