f164ce16a674a43c3b7d06100e60136389aa00502051103abdd88f741ca58ba8 | Triage

Sharing

General

Target

dekont_06.03.2024 MaximumİşyerimİşlemÖzetiniz.exe
Size

710KB
Sample

240307-wkla7ahe79
MD5

96ac4013d30d6dea4a0eb3ea2b4a3e22
SHA1

c539ae8ab18d240b7b761baa2840076b191a7e4e
SHA256

f164ce16a674a43c3b7d06100e60136389aa00502051103abdd88f741ca58ba8
SHA512

0f45309f44c7e8f451ac6f34587a90a515eeec6cff2e6f1a856108677111b0e7875e5e05ff8e43858e2c0ed0c619e9a8a87fcc495edeb53c4df51c435c045e13
SSDEEP

12288:QBtsy/j21yyxK+TgFA2huBs3oV6npo8wOZK0oBGrjAF0etpkjysdOD:Zy/j2cyY+Y0i3odJCyBfj/kjylD

Score

7^/10

Malware Config

Targets

- Target
  
  dekont_06.03.2024 MaximumİşyerimİşlemÖzetiniz.exe
- Size
  
  710KB
- MD5
  
  96ac4013d30d6dea4a0eb3ea2b4a3e22
- SHA1
  
  c539ae8ab18d240b7b761baa2840076b191a7e4e
- SHA256
  
  f164ce16a674a43c3b7d06100e60136389aa00502051103abdd88f741ca58ba8
- SHA512
  
  0f45309f44c7e8f451ac6f34587a90a515eeec6cff2e6f1a856108677111b0e7875e5e05ff8e43858e2c0ed0c619e9a8a87fcc495edeb53c4df51c435c045e13
- SSDEEP
  
  12288:QBtsy/j21yyxK+TgFA2huBs3oV6npo8wOZK0oBGrjAF0etpkjysdOD:Zy/j2cyY+Y0i3odJCyBfj/kjylD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2