822a0c35e3177e8e5aebae815d462876f890a03c6e48d03bd5bfabe437ccac27 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd2f2f0a59f5ee39bb1dd52f854f97bd.bin
Size

31KB
Sample

240225-ehsttaah37
MD5

cd2f2f0a59f5ee39bb1dd52f854f97bd
SHA1

948b04c91660ee2475599dd1d3fd27a5896df4a2
SHA256

822a0c35e3177e8e5aebae815d462876f890a03c6e48d03bd5bfabe437ccac27
SHA512

0ba7436ceacf44e37824aa67f26070e37395568e1ea3973df484e2553e849cb2c87abda5eb76d960cd05fa0159a42ef4315bcc3be135212696214438c4520c5a
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsjU:bA74zYcgT/Ekd0ryfjPIunvsjU

Score

7^/10

Malware Config

Targets

- Target
  
  cd2f2f0a59f5ee39bb1dd52f854f97bd.bin
- Size
  
  31KB
- MD5
  
  cd2f2f0a59f5ee39bb1dd52f854f97bd
- SHA1
  
  948b04c91660ee2475599dd1d3fd27a5896df4a2
- SHA256
  
  822a0c35e3177e8e5aebae815d462876f890a03c6e48d03bd5bfabe437ccac27
- SHA512
  
  0ba7436ceacf44e37824aa67f26070e37395568e1ea3973df484e2553e849cb2c87abda5eb76d960cd05fa0159a42ef4315bcc3be135212696214438c4520c5a
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunvsjU:bA74zYcgT/Ekd0ryfjPIunvsjU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2