20247bfe70d62f7e27991c63a8052c21495b0df384fb118097c54a5ff117d6b8 | Triage

Sharing

General

Target

2024-02-13_c67a1f278d9f670e0f8355044471df05_mafia
Size

872KB
Sample

240213-wwvn1aeg5z
MD5

c67a1f278d9f670e0f8355044471df05
SHA1

df49d02bd36b9dadec2e9f0e8d14a994e6b75fb6
SHA256

20247bfe70d62f7e27991c63a8052c21495b0df384fb118097c54a5ff117d6b8
SHA512

e8daed3f75440d713506aeb77d6a71c21c9f6c5c6757baf299a88b70fb5ab8c988f51e4b23870cfc8d2e22248cd5ab1b85d30ae7e3764e7b0aebd0d6ef11a86a
SSDEEP

24576:lX47adsX3WgCI21wf+FV6gh8yOZ0blPRXRlC9jJXJv:lX4WdsXmgCl1qq8gB5ZPRXRlC9dB

Score

7^/10

Malware Config

Targets

- Target
  
  2024-02-13_c67a1f278d9f670e0f8355044471df05_mafia
- Size
  
  872KB
- MD5
  
  c67a1f278d9f670e0f8355044471df05
- SHA1
  
  df49d02bd36b9dadec2e9f0e8d14a994e6b75fb6
- SHA256
  
  20247bfe70d62f7e27991c63a8052c21495b0df384fb118097c54a5ff117d6b8
- SHA512
  
  e8daed3f75440d713506aeb77d6a71c21c9f6c5c6757baf299a88b70fb5ab8c988f51e4b23870cfc8d2e22248cd5ab1b85d30ae7e3764e7b0aebd0d6ef11a86a
- SSDEEP
  
  24576:lX47adsX3WgCI21wf+FV6gh8yOZ0blPRXRlC9jJXJv:lX4WdsXmgCl1qq8gB5ZPRXRlC9dB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2