f013d74de30b0a474c207c5c1b8d9beae8da3d8d3e9ee077b22acbfc4a38b098 | Triage

Sharing

General

Target

8f792f36df503f1b5cb8fdfae104dea5
Size

57KB
Sample

240204-sln7pacga5
MD5

8f792f36df503f1b5cb8fdfae104dea5
SHA1

00de46db741ea2d07958b77a32ebf536ca82df52
SHA256

f013d74de30b0a474c207c5c1b8d9beae8da3d8d3e9ee077b22acbfc4a38b098
SHA512

e587e86b02013384f946481b90078fff8f79da3ab2cf7aa3aaeebc587905fd44da692d520554812e28316d3be00320d17c90dc2aad22dfcdefe5fd21fc63b721
SSDEEP

768:fmC5luOEa7NeVM39NE1XHeDqRrZ9X3np1UBVUxAO0X4sAZSOQB/gDYyf:F7NuMvm+69XbUgxw8UFgD3

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  8f792f36df503f1b5cb8fdfae104dea5
- Size
  
  57KB
- MD5
  
  8f792f36df503f1b5cb8fdfae104dea5
- SHA1
  
  00de46db741ea2d07958b77a32ebf536ca82df52
- SHA256
  
  f013d74de30b0a474c207c5c1b8d9beae8da3d8d3e9ee077b22acbfc4a38b098
- SHA512
  
  e587e86b02013384f946481b90078fff8f79da3ab2cf7aa3aaeebc587905fd44da692d520554812e28316d3be00320d17c90dc2aad22dfcdefe5fd21fc63b721
- SSDEEP
  
  768:fmC5luOEa7NeVM39NE1XHeDqRrZ9X3np1UBVUxAO0X4sAZSOQB/gDYyf:F7NuMvm+69XbUgxw8UFgD3
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2