8ade36ca05b733841f178b46dabeefcd3cadb0d91ce83e0e313b68376c75189c | Triage

Sharing

General

Target

7781c1145869cdf87cf61d671247e80e
Size

379KB
Sample

240126-qxvgqsgcaj
MD5

7781c1145869cdf87cf61d671247e80e
SHA1

e2f76f546d3e4ff3e748fb6d4b1b3d2890c3b1da
SHA256

8ade36ca05b733841f178b46dabeefcd3cadb0d91ce83e0e313b68376c75189c
SHA512

6d1767dc3ef0751f7a1d4c4b43d621a48a06124780e57393e5a5a8039d66a90468e8ba09a44210d02e63ab06c0bb367755f43220c9c265f2a3c5bf1ad9cdf776
SSDEEP

6144:Lu2urzh9xu/XkauJza8em0Xs0anV3Ve1h3yU1OIGtNAkoIaNOBG29J8YLj4UdC/P:Lutrzh9xOXkFa8em0X0V3U1hx1OIGtNQ

Score

7^/10

Malware Config

Targets

- Target
  
  7781c1145869cdf87cf61d671247e80e
- Size
  
  379KB
- MD5
  
  7781c1145869cdf87cf61d671247e80e
- SHA1
  
  e2f76f546d3e4ff3e748fb6d4b1b3d2890c3b1da
- SHA256
  
  8ade36ca05b733841f178b46dabeefcd3cadb0d91ce83e0e313b68376c75189c
- SHA512
  
  6d1767dc3ef0751f7a1d4c4b43d621a48a06124780e57393e5a5a8039d66a90468e8ba09a44210d02e63ab06c0bb367755f43220c9c265f2a3c5bf1ad9cdf776
- SSDEEP
  
  6144:Lu2urzh9xu/XkauJza8em0Xs0anV3Ve1h3yU1OIGtNAkoIaNOBG29J8YLj4UdC/P:Lutrzh9xOXkFa8em0X0V3U1hx1OIGtNQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2