1981c451c5236ced784f8dcaea45f5ce56c7002ac743d4e41d2b253f6fcca994 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

eb4ef238316752e7beaee5ab7e013122.bin
Size

4.5MB
Sample

240310-dxr1dsbb28
MD5

eb4ef238316752e7beaee5ab7e013122
SHA1

0ffb8c79bed50e88135dad66e69ede6b463154dd
SHA256

1981c451c5236ced784f8dcaea45f5ce56c7002ac743d4e41d2b253f6fcca994
SHA512

a95e0d122a9d91763769ebbd4c78d137da460016dc7a9369f99ebf4e430e287bc559caa0ba0adcbff578e9832bb4f3c15b60c53d850a31e2a804c0b387c562d1
SSDEEP

98304:g/ZFIjBzldUfs/ZFIjBz7jSZD1tU7ymT7:g/ZFIjBzF/ZFIjBzPEUus7

Score

7^/10

Malware Config

Targets

- Target
  
  eb4ef238316752e7beaee5ab7e013122.bin
- Size
  
  4.5MB
- MD5
  
  eb4ef238316752e7beaee5ab7e013122
- SHA1
  
  0ffb8c79bed50e88135dad66e69ede6b463154dd
- SHA256
  
  1981c451c5236ced784f8dcaea45f5ce56c7002ac743d4e41d2b253f6fcca994
- SHA512
  
  a95e0d122a9d91763769ebbd4c78d137da460016dc7a9369f99ebf4e430e287bc559caa0ba0adcbff578e9832bb4f3c15b60c53d850a31e2a804c0b387c562d1
- SSDEEP
  
  98304:g/ZFIjBzldUfs/ZFIjBz7jSZD1tU7ymT7:g/ZFIjBzF/ZFIjBzPEUus7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2