3b781f33924952a39b0400f014eb1ff1f8cdf15375ab1df22bdd09daceda2942 | Triage

Sharing

General

Target

df26a9d4c0b86c4331515c353eb2aba0.bin
Size

38KB
Sample

240125-dj5dkaeha3
MD5

df26a9d4c0b86c4331515c353eb2aba0
SHA1

46dd6ef1dc7a44e6d371b889a21a5c9af898e975
SHA256

3b781f33924952a39b0400f014eb1ff1f8cdf15375ab1df22bdd09daceda2942
SHA512

ce36ad6d66f078469dfef003c4ab5a798d667a026431099ab73f8f4640c2d5d694903c7b81c7f9a1087522df4c33b1157b811aa7848bc201689f7118dba6a60d
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3Nb/mVi5:bAvJCYOOvbRPDEgXrNekd7l94i3p/hx

Score

7^/10

Malware Config

Targets

- Target
  
  df26a9d4c0b86c4331515c353eb2aba0.bin
- Size
  
  38KB
- MD5
  
  df26a9d4c0b86c4331515c353eb2aba0
- SHA1
  
  46dd6ef1dc7a44e6d371b889a21a5c9af898e975
- SHA256
  
  3b781f33924952a39b0400f014eb1ff1f8cdf15375ab1df22bdd09daceda2942
- SHA512
  
  ce36ad6d66f078469dfef003c4ab5a798d667a026431099ab73f8f4640c2d5d694903c7b81c7f9a1087522df4c33b1157b811aa7848bc201689f7118dba6a60d
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3Nb/mVi5:bAvJCYOOvbRPDEgXrNekd7l94i3p/hx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2