f559efc92d206eaf04cdbd9dcdcc789b665c1d5308f34e09ecfd94c4a1e0a153 | Triage

Sharing

General

Target

7d0447af6b382c6cea61dac3dd63abc3
Size

27KB
Sample

240128-nrgycabfej
MD5

7d0447af6b382c6cea61dac3dd63abc3
SHA1

cdb70504a064f0c44ec018d0896912daf0e364e8
SHA256

f559efc92d206eaf04cdbd9dcdcc789b665c1d5308f34e09ecfd94c4a1e0a153
SHA512

949f8dccbb57534b3534a5657a9669a97aa4c0bc4c3407b3734a5c37682c95c7ffe1511342b1c8deb43e49e39973f10353129b9e31d238e173927c755827cca5
SSDEEP

384:mYWgasxFqgqj9Von4G6X3Mish/G1z0U+alVvHEuCdXlhLnlgM11Kl1tOpvRMdH:mY7asxuj9OYDTDqlz4OpvyH

Score

7^/10

Malware Config

Targets

- Target
  
  7d0447af6b382c6cea61dac3dd63abc3
- Size
  
  27KB
- MD5
  
  7d0447af6b382c6cea61dac3dd63abc3
- SHA1
  
  cdb70504a064f0c44ec018d0896912daf0e364e8
- SHA256
  
  f559efc92d206eaf04cdbd9dcdcc789b665c1d5308f34e09ecfd94c4a1e0a153
- SHA512
  
  949f8dccbb57534b3534a5657a9669a97aa4c0bc4c3407b3734a5c37682c95c7ffe1511342b1c8deb43e49e39973f10353129b9e31d238e173927c755827cca5
- SSDEEP
  
  384:mYWgasxFqgqj9Von4G6X3Mish/G1z0U+alVvHEuCdXlhLnlgM11Kl1tOpvRMdH:mY7asxuj9OYDTDqlz4OpvyH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2