16d958728ded74f9ff1bba59c4ca4799620b4558030e7d20a1e0e32cdc826c93 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7719f6e3eb2761112e67f00815e3bf6f.bin
Size

60KB
Sample

240307-cqldlaec4y
MD5

7719f6e3eb2761112e67f00815e3bf6f
SHA1

b82b1232bc6fa4792f212123168d5347395db5c8
SHA256

16d958728ded74f9ff1bba59c4ca4799620b4558030e7d20a1e0e32cdc826c93
SHA512

f70dbe2f7d7d3b2978475fba38a126f62484ae2c753f2071ab835923981b99e74bf5dbb915ad435e07f4c516a8fe86e807c974ba6011230b6c5559553f25af20
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI09:TCjsIOtEvwDpj5HE/OUHnSMo

Score

7^/10

Malware Config

Targets

- Target
  
  7719f6e3eb2761112e67f00815e3bf6f.bin
- Size
  
  60KB
- MD5
  
  7719f6e3eb2761112e67f00815e3bf6f
- SHA1
  
  b82b1232bc6fa4792f212123168d5347395db5c8
- SHA256
  
  16d958728ded74f9ff1bba59c4ca4799620b4558030e7d20a1e0e32cdc826c93
- SHA512
  
  f70dbe2f7d7d3b2978475fba38a126f62484ae2c753f2071ab835923981b99e74bf5dbb915ad435e07f4c516a8fe86e807c974ba6011230b6c5559553f25af20
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTI09:TCjsIOtEvwDpj5HE/OUHnSMo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2