edb7da251efa8280840fcc77e49719fa64611069aaba1500973c790828af00b6 | Triage

Sharing

General

Target

2024-01-26_926c8774ad2aaed8c1a8aa11d7961c2a_mafia
Size

535KB
Sample

240126-m5dbmscac2
MD5

926c8774ad2aaed8c1a8aa11d7961c2a
SHA1

dba8d62190973aef89fad9adab733f6da5ae0881
SHA256

edb7da251efa8280840fcc77e49719fa64611069aaba1500973c790828af00b6
SHA512

15e017465402ee3726a73f58a91a7ba02d706105cda708852d7cb89f101575ca835f459ef40f473f416e475102930755e363cbd64aadaa4feab1549d85a326ce
SSDEEP

12288:si4g+yU+0pAiv+DhaMFIvXPua6emoWvxUlvjosTdcG93Dn:si4gXn0pD+DhaMFkPt6edlvjRhFJ

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-26_926c8774ad2aaed8c1a8aa11d7961c2a_mafia
- Size
  
  535KB
- MD5
  
  926c8774ad2aaed8c1a8aa11d7961c2a
- SHA1
  
  dba8d62190973aef89fad9adab733f6da5ae0881
- SHA256
  
  edb7da251efa8280840fcc77e49719fa64611069aaba1500973c790828af00b6
- SHA512
  
  15e017465402ee3726a73f58a91a7ba02d706105cda708852d7cb89f101575ca835f459ef40f473f416e475102930755e363cbd64aadaa4feab1549d85a326ce
- SSDEEP
  
  12288:si4g+yU+0pAiv+DhaMFIvXPua6emoWvxUlvjosTdcG93Dn:si4gXn0pD+DhaMFkPt6edlvjRhFJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2