5476cfd8d867ea6515cfbef1a82f73ee3fe92dcbf34249ae559af5b6a3f3a4b0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

722e45c69a57bf00678d0e3159671260
Size

468KB
Sample

240124-n5lhpahfh6
MD5

722e45c69a57bf00678d0e3159671260
SHA1

5ddcb8a932c9a86532b2bfe48e08e31d05ef55e4
SHA256

5476cfd8d867ea6515cfbef1a82f73ee3fe92dcbf34249ae559af5b6a3f3a4b0
SHA512

4e30addc289bedbb63bfc7db25841c6c6d1bf4333dd9564a92bd9d53d7e5ba167d0e3b9e4b50f5ad540a9285f06e1a9e3008d379edbb9fa0bdfc7acd76b98f75
SSDEEP

12288:Ehdo9G2RAAbPpIQSQIf7V7V5bH/cxmUcpPbEm5MknUdOwNFQ:E7o9f+dQIf7VTbU0Em5Mf

Score

7^/10

Malware Config

Targets

- Target
  
  722e45c69a57bf00678d0e3159671260
- Size
  
  468KB
- MD5
  
  722e45c69a57bf00678d0e3159671260
- SHA1
  
  5ddcb8a932c9a86532b2bfe48e08e31d05ef55e4
- SHA256
  
  5476cfd8d867ea6515cfbef1a82f73ee3fe92dcbf34249ae559af5b6a3f3a4b0
- SHA512
  
  4e30addc289bedbb63bfc7db25841c6c6d1bf4333dd9564a92bd9d53d7e5ba167d0e3b9e4b50f5ad540a9285f06e1a9e3008d379edbb9fa0bdfc7acd76b98f75
- SSDEEP
  
  12288:Ehdo9G2RAAbPpIQSQIf7V7V5bH/cxmUcpPbEm5MknUdOwNFQ:E7o9f+dQIf7VTbU0Em5Mf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2