ba3604187a12e6bc88e16980bfe6825b5354de84606586f3a7c64fe6926f6ab1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1eb872dcd0d186f88f1a6c3e9d5f181c.bin
Size

35KB
Sample

240310-brsnmagh2w
MD5

1eb872dcd0d186f88f1a6c3e9d5f181c
SHA1

f18cf316cc665275d8c9fcc51713649e4c378528
SHA256

ba3604187a12e6bc88e16980bfe6825b5354de84606586f3a7c64fe6926f6ab1
SHA512

740454b5888bd8e1fd00bedb15354dee9d0b642ebe1e23f0a620e28b3bd4e65b8a512cbed755db65ddeeb853a82919286d47082799b0371061197ca52b6062cb
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiA0f9HMfK9:btB9g/WItCSsAGjX7e9N8sfW

Score

7^/10

Malware Config

Targets

- Target
  
  1eb872dcd0d186f88f1a6c3e9d5f181c.bin
- Size
  
  35KB
- MD5
  
  1eb872dcd0d186f88f1a6c3e9d5f181c
- SHA1
  
  f18cf316cc665275d8c9fcc51713649e4c378528
- SHA256
  
  ba3604187a12e6bc88e16980bfe6825b5354de84606586f3a7c64fe6926f6ab1
- SHA512
  
  740454b5888bd8e1fd00bedb15354dee9d0b642ebe1e23f0a620e28b3bd4e65b8a512cbed755db65ddeeb853a82919286d47082799b0371061197ca52b6062cb
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiA0f9HMfK9:btB9g/WItCSsAGjX7e9N8sfW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2