48158faf00e490f22c86f363b9cc7cf052d1f1edbaefd831de0d6a54b8751f4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a30c3d76ef9ff4531cd7e3741bdd39d7
Size

1.3MB
Sample

240225-gljresdh6v
MD5

a30c3d76ef9ff4531cd7e3741bdd39d7
SHA1

9cfb008e4cdac98aee126079c8db4d5cd32db70a
SHA256

48158faf00e490f22c86f363b9cc7cf052d1f1edbaefd831de0d6a54b8751f4f
SHA512

a7d6c9c5cf4583d16e748ff8f50058e1e8469eef943824343417651bccd40c8298cf052dec9fbea99f739faae908ca8799b4eef48fcb830e592a9c437d8ff7b9
SSDEEP

24576:a7t1QobgnxVpDNhirSokjyuGoI2gLSpwcl6XO2Io9YQgyZPFddwPk8JAWB8lLVz:4t1+nVNfokjpGZuSA+YV4J8ZB8l5

Score

7^/10

Malware Config

Targets

- Target
  
  a30c3d76ef9ff4531cd7e3741bdd39d7
- Size
  
  1.3MB
- MD5
  
  a30c3d76ef9ff4531cd7e3741bdd39d7
- SHA1
  
  9cfb008e4cdac98aee126079c8db4d5cd32db70a
- SHA256
  
  48158faf00e490f22c86f363b9cc7cf052d1f1edbaefd831de0d6a54b8751f4f
- SHA512
  
  a7d6c9c5cf4583d16e748ff8f50058e1e8469eef943824343417651bccd40c8298cf052dec9fbea99f739faae908ca8799b4eef48fcb830e592a9c437d8ff7b9
- SSDEEP
  
  24576:a7t1QobgnxVpDNhirSokjyuGoI2gLSpwcl6XO2Io9YQgyZPFddwPk8JAWB8lLVz:4t1+nVNfokjpGZuSA+YV4J8ZB8l5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2