10c74f0f8a7deeaeca3f4dbee4998f4233509483446d65bd41e4380a5347b94d | Triage

Sharing

General

Target

bb2da5e079b52993461dd39f0fc44d68
Size

361KB
Sample

240308-nxa2zsfa9v
MD5

bb2da5e079b52993461dd39f0fc44d68
SHA1

6a4dffec175970fe04bc02728aa0c907a8bee86b
SHA256

10c74f0f8a7deeaeca3f4dbee4998f4233509483446d65bd41e4380a5347b94d
SHA512

c23eee28589506022e53cec008600656218f6c41bd1714dd1f6498559499c635b91a3387ab65fbfaec05c3b12f30c27b658eb4970f51e1fc0c8c2066afcd3c7b
SSDEEP

6144:rgU633ZwSmJy7Lbii5bkgVuN+xSKV7Wkrsf7Lss2dA+wp5lUjpWYlNQJF:rgJZwSmJSXikbkgaISKVM2dUU8KS

Score

7^/10

Malware Config

Targets

- Target
  
  bb2da5e079b52993461dd39f0fc44d68
- Size
  
  361KB
- MD5
  
  bb2da5e079b52993461dd39f0fc44d68
- SHA1
  
  6a4dffec175970fe04bc02728aa0c907a8bee86b
- SHA256
  
  10c74f0f8a7deeaeca3f4dbee4998f4233509483446d65bd41e4380a5347b94d
- SHA512
  
  c23eee28589506022e53cec008600656218f6c41bd1714dd1f6498559499c635b91a3387ab65fbfaec05c3b12f30c27b658eb4970f51e1fc0c8c2066afcd3c7b
- SSDEEP
  
  6144:rgU633ZwSmJy7Lbii5bkgVuN+xSKV7Wkrsf7Lss2dA+wp5lUjpWYlNQJF:rgJZwSmJSXikbkgaISKVM2dUU8KS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2