378657ce54660ab79baafc76bbe9344236abbec614d9d3507b05182d3b55f9ef | Triage

Resubmissions

19-02-2024 07:06

240219-hxgxmsaf9z 7

19-02-2024 06:49

240219-hlmnraaf7z 7

19-02-2024 06:45

240219-hjhl1saf7w 7

Sharing

General

Target

TEKLIF TALEP VE FIYAT TEKLIFI_xlsx.z
Size

656KB
Sample

240219-hjhl1saf7w
MD5

0b43106a072a30294157955a6bb44bfe
SHA1

4246c01d094434bf30ff81177f67e49ae8a6f912
SHA256

378657ce54660ab79baafc76bbe9344236abbec614d9d3507b05182d3b55f9ef
SHA512

753ce93816dad4e96f0910444db62f884d27bf4c843f3873dc70a921d2adc26ce81be5811875d144103c598f48a4783d10a5347a1c2056980d2bdf67b7dfe54f
SSDEEP

12288:kwnEtWDQ9FKXUgBPDfJ0NOKKtl1MrqcaE/5tYRvk9f3gHo2vy:GWDiKXL9JcKih/8RvJvy

Score

7^/10

Malware Config

Targets

- Target
  
  TEKLİF TALEP VE FİYAT TEKLİFİ_xlsx.exe
- Size
  
  697KB
- MD5
  
  7532ca480d1f82a2eaa7a3d07be3bfbe
- SHA1
  
  74d084144d7402ad8cfc024bcaca6d073a9f032a
- SHA256
  
  1bf711744adbf1b2de0f3fb5d8abb2966018b61fa5b248de1ba6aaaac8bb681a
- SHA512
  
  478e3af91436f12fc05226929f79c266dffed198f1d8486feb8ef6935688d8eebee1406149076e18f4d8d068b441be484e501a1f7ddb2c9b11618efee56c325b
- SSDEEP
  
  12288:j9wSmPwRYnOELz89XMWkTVKI1lImTY0LuV6WMSUc3EzAynJrFDKMUoI3axFxYYF9:2SmP0Y74TkTV1a0LuVzMSUW+B/KaIq7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2