03da2459dc3d3e6381341353bf9f0f5220e9e351bbbe94938e5a7e0dab64d6f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d94d652a24dbe5efd119419319309ee.bin
Size

76KB
Sample

240218-bdb4qacg49
MD5

0d94d652a24dbe5efd119419319309ee
SHA1

c717cf7a9602c8bb51d5f01a0f05fc9cfae1a27f
SHA256

03da2459dc3d3e6381341353bf9f0f5220e9e351bbbe94938e5a7e0dab64d6f8
SHA512

56cc0f0a241bcb5368cce80040f6d58bf1604fb77d4e71996c0f0c0587c9475dfb1b0940e0a62868e1acf31df980167daf3460a1e64aa66d577cb75f09610894
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufo:vCjsIOtEvwDpj5H9YvQd28

Score

7^/10

Malware Config

Targets

- Target
  
  0d94d652a24dbe5efd119419319309ee.bin
- Size
  
  76KB
- MD5
  
  0d94d652a24dbe5efd119419319309ee
- SHA1
  
  c717cf7a9602c8bb51d5f01a0f05fc9cfae1a27f
- SHA256
  
  03da2459dc3d3e6381341353bf9f0f5220e9e351bbbe94938e5a7e0dab64d6f8
- SHA512
  
  56cc0f0a241bcb5368cce80040f6d58bf1604fb77d4e71996c0f0c0587c9475dfb1b0940e0a62868e1acf31df980167daf3460a1e64aa66d577cb75f09610894
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufo:vCjsIOtEvwDpj5H9YvQd28
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2