a939db680c17235feba8c126578676716ec1f71bcda4ad04e7e76a4673335b18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a939db680c17235feba8c126578676716ec1f71bcda4ad04e7e76a4673335b18
Size

25KB
Sample

240305-3t87yaea99
MD5

f37d47f0e458df737e3c29059a9b13c9
SHA1

d736644621ec8cd8f74cad3f92a8a1c12d43ce25
SHA256

a939db680c17235feba8c126578676716ec1f71bcda4ad04e7e76a4673335b18
SHA512

642968c5d4cb515e61ddce0e8913a2f59df5d950273bdb1100cc6e45427d00a9594efd85a6e1224ea91095f327fdc793f8380b6f19429b3b6bd441356db723d2
SSDEEP

384:O/HTfut04H5wakydVf/4xQ8uFvTtk4Fe3baIYdh7hEvK76nZS:O/zcJ5Pf/r8urkp3bxHv+64

Score

7^/10

Malware Config

Targets

- Target
  
  a939db680c17235feba8c126578676716ec1f71bcda4ad04e7e76a4673335b18
- Size
  
  25KB
- MD5
  
  f37d47f0e458df737e3c29059a9b13c9
- SHA1
  
  d736644621ec8cd8f74cad3f92a8a1c12d43ce25
- SHA256
  
  a939db680c17235feba8c126578676716ec1f71bcda4ad04e7e76a4673335b18
- SHA512
  
  642968c5d4cb515e61ddce0e8913a2f59df5d950273bdb1100cc6e45427d00a9594efd85a6e1224ea91095f327fdc793f8380b6f19429b3b6bd441356db723d2
- SSDEEP
  
  384:O/HTfut04H5wakydVf/4xQ8uFvTtk4Fe3baIYdh7hEvK76nZS:O/zcJ5Pf/r8urkp3bxHv+64
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2