dab7f2d2eb0ed32fd0e2df22053436a579028d8ef80e56a66900bf93ac655f19 | Triage

Sharing

General

Target

dab7f2d2eb0ed32fd0e2df22053436a579028d8ef80e56a66900bf93ac655f19.exe
Size

704KB
Sample

240224-k14xpagb8s
MD5

00ac51b7c853cebd3d5b3536a9609245
SHA1

a152ac9f8664471dacb3aed902dcbaac82fb69d4
SHA256

dab7f2d2eb0ed32fd0e2df22053436a579028d8ef80e56a66900bf93ac655f19
SHA512

7f9fec739627b042278e84b0159cb066977a64bda65d64400e545f81419ffc0b4f22f50071f2f4bffd5d315e47813270391510e7a85ba7ed11de106910e5ad08
SSDEEP

12288:2ws/KP5Ujd53LlvlGw13/5R1XRwT/Nt+MTxVIGnom5SxDPpKpcWuoqMX/qqMrF9w:vBKOwR/L1XRwL3+MPIGn55SJPpRoqy/g

Score

7^/10

Malware Config

Targets

- Target
  
  dab7f2d2eb0ed32fd0e2df22053436a579028d8ef80e56a66900bf93ac655f19.exe
- Size
  
  704KB
- MD5
  
  00ac51b7c853cebd3d5b3536a9609245
- SHA1
  
  a152ac9f8664471dacb3aed902dcbaac82fb69d4
- SHA256
  
  dab7f2d2eb0ed32fd0e2df22053436a579028d8ef80e56a66900bf93ac655f19
- SHA512
  
  7f9fec739627b042278e84b0159cb066977a64bda65d64400e545f81419ffc0b4f22f50071f2f4bffd5d315e47813270391510e7a85ba7ed11de106910e5ad08
- SSDEEP
  
  12288:2ws/KP5Ujd53LlvlGw13/5R1XRwT/Nt+MTxVIGnom5SxDPpKpcWuoqMX/qqMrF9w:vBKOwR/L1XRwL3+MPIGn55SJPpRoqy/g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2