caade3c4761194516670ae3d635106e92d6b2bd02452d7dfc7ef013d8936d5e0 | Triage

Sharing

General

Target

caade3c4761194516670ae3d635106e92d6b2bd02452d7dfc7ef013d8936d5e0
Size

39KB
Sample

240306-bj9xyafh97
MD5

b1d0211819ef7db7da890c083e247918
SHA1

f299f7e51d29e0d3653831cd0d3c3c6f56de8383
SHA256

caade3c4761194516670ae3d635106e92d6b2bd02452d7dfc7ef013d8936d5e0
SHA512

90a6fd74c7369249ed70c8198df5513da34912935b19185b588502f81698348a4c4ddb9bfc1791a050107d71867ab57644d17d6083b431d07218afaaf7b4e62e
SSDEEP

384:AQWRRIWCwovIVhraM7WT4EOyyA87fZHg8FKVN1IT:AhRyvm7oOyyA87fdICT

Score

7^/10

Malware Config

Targets

- Target
  
  caade3c4761194516670ae3d635106e92d6b2bd02452d7dfc7ef013d8936d5e0
- Size
  
  39KB
- MD5
  
  b1d0211819ef7db7da890c083e247918
- SHA1
  
  f299f7e51d29e0d3653831cd0d3c3c6f56de8383
- SHA256
  
  caade3c4761194516670ae3d635106e92d6b2bd02452d7dfc7ef013d8936d5e0
- SHA512
  
  90a6fd74c7369249ed70c8198df5513da34912935b19185b588502f81698348a4c4ddb9bfc1791a050107d71867ab57644d17d6083b431d07218afaaf7b4e62e
- SSDEEP
  
  384:AQWRRIWCwovIVhraM7WT4EOyyA87fZHg8FKVN1IT:AhRyvm7oOyyA87fdICT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2