613c5ad9b8ade0a40e4766df16a37f093b148e0e5459be8d5a2468ad980eb11c | Triage

Sharing

General

Target

9c23007a889306938e3493ddc1af2c9c
Size

193KB
Sample

240214-ty4ctagd68
MD5

9c23007a889306938e3493ddc1af2c9c
SHA1

3a5f089fd04297e1c45159989b03bc0d42428a1d
SHA256

613c5ad9b8ade0a40e4766df16a37f093b148e0e5459be8d5a2468ad980eb11c
SHA512

87b3726e82ed5b423c94d015472e090632ea8ecd67ef0b0b1c77a9b4ca7c4a8c7412a49a3be8d9ab4c98bedd274c67139219e2782cb90055f7949a2126936ab0
SSDEEP

3072:L8VJP2FKRZulJR++Dy9alZSQxi7ATJzgw36lSMdXPrjmRPEIXOYh3f:sP3RkA+WozDxi7YJzgY6lSiXPrjmRNXp

Score

7^/10

Malware Config

Targets

- Target
  
  9c23007a889306938e3493ddc1af2c9c
- Size
  
  193KB
- MD5
  
  9c23007a889306938e3493ddc1af2c9c
- SHA1
  
  3a5f089fd04297e1c45159989b03bc0d42428a1d
- SHA256
  
  613c5ad9b8ade0a40e4766df16a37f093b148e0e5459be8d5a2468ad980eb11c
- SHA512
  
  87b3726e82ed5b423c94d015472e090632ea8ecd67ef0b0b1c77a9b4ca7c4a8c7412a49a3be8d9ab4c98bedd274c67139219e2782cb90055f7949a2126936ab0
- SSDEEP
  
  3072:L8VJP2FKRZulJR++Dy9alZSQxi7ATJzgw36lSMdXPrjmRPEIXOYh3f:sP3RkA+WozDxi7YJzgY6lSiXPrjmRNXp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2