8ade2070b8a527d59b2ab9c16de81449f368f286b7a826ee33f2182701cf7447 | Triage

Sharing

General

Target

77fa451708d26a3f3ed7f8e8cd448a5d
Size

1.1MB
Sample

240126-v9956scedj
MD5

77fa451708d26a3f3ed7f8e8cd448a5d
SHA1

dbb910ce9121220c4baae79884ebfbf7ce86e632
SHA256

8ade2070b8a527d59b2ab9c16de81449f368f286b7a826ee33f2182701cf7447
SHA512

344e8b4d2544499882bab0d933777b0b4380cde8640288d0084989bbd42eb29093bb2f0a916b2585608197af17d7f817176c50433a16c396f0d31830e1aa95a1
SSDEEP

24576:lUXvfNa2/Bjq8y+DtBkRollGQdKnWYwP1Am6xoaF+0OHB4XY513Vd0ZkA:lq/B+8yiDllEQA+uy/hHBOY51ekA

Score

8^/10

Malware Config

Targets

- Target
  
  77fa451708d26a3f3ed7f8e8cd448a5d
- Size
  
  1.1MB
- MD5
  
  77fa451708d26a3f3ed7f8e8cd448a5d
- SHA1
  
  dbb910ce9121220c4baae79884ebfbf7ce86e632
- SHA256
  
  8ade2070b8a527d59b2ab9c16de81449f368f286b7a826ee33f2182701cf7447
- SHA512
  
  344e8b4d2544499882bab0d933777b0b4380cde8640288d0084989bbd42eb29093bb2f0a916b2585608197af17d7f817176c50433a16c396f0d31830e1aa95a1
- SSDEEP
  
  24576:lUXvfNa2/Bjq8y+DtBkRollGQdKnWYwP1Am6xoaF+0OHB4XY513Vd0ZkA:lq/B+8yiDllEQA+uy/hHBOY51ekA
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2