393349478b4a904e4e4394891f7b3dc25c404a28c7d1381822e39b9ee683aa45 | Triage

Sharing

General

Target

ea80838f3016998e4fc2532c736d5ca8.bin
Size

34KB
Sample

240218-fbav4adh7x
MD5

ea80838f3016998e4fc2532c736d5ca8
SHA1

2f49a1059f746b74001a272fd67c2fa1e7db9edc
SHA256

393349478b4a904e4e4394891f7b3dc25c404a28c7d1381822e39b9ee683aa45
SHA512

8a014d128a07f1bd9b3e13daa5a4ea1e167fe4db856c89f7284249290be9f2915c47c065ecf9ffed4b085b11087785cf0ed546ea57a2f7c3f0125af811ef91ea
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6ls:bA74zYcgT/Ekd0ryfjPIunqpeNswmb

Score

7^/10

Malware Config

Targets

- Target
  
  ea80838f3016998e4fc2532c736d5ca8.bin
- Size
  
  34KB
- MD5
  
  ea80838f3016998e4fc2532c736d5ca8
- SHA1
  
  2f49a1059f746b74001a272fd67c2fa1e7db9edc
- SHA256
  
  393349478b4a904e4e4394891f7b3dc25c404a28c7d1381822e39b9ee683aa45
- SHA512
  
  8a014d128a07f1bd9b3e13daa5a4ea1e167fe4db856c89f7284249290be9f2915c47c065ecf9ffed4b085b11087785cf0ed546ea57a2f7c3f0125af811ef91ea
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6ls:bA74zYcgT/Ekd0ryfjPIunqpeNswmb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2