1c760d3ebcc7f2de3c65972ba918a60e89a2ecd09d252df1ce60aae8f8f585a2 | Triage

Sharing

General

Target

1c760d3ebcc7f2de3c65972ba918a60e89a2ecd09d252df1ce60aae8f8f585a2
Size

33KB
Sample

240311-yasnmaec88
MD5

5aa3edfcff06a40602568c47faf2c17b
SHA1

5ea696578eb79a366335b7a9091a841f29a96a79
SHA256

1c760d3ebcc7f2de3c65972ba918a60e89a2ecd09d252df1ce60aae8f8f585a2
SHA512

df413f9208618f818043a455cbeba1c3f93f63773cd5582e2300fb43340de22290f4da3b8ce31b408410b7c6b7ba6367b2c64334f3206cde0d9a48cac9cebe8f
SSDEEP

384:rHh50gmTTKey4xCQhgbImrgaMXAuRmH0gBKk8TiGEU7ksW+hWdkpVdcaZcKJ++HE:rHhTnQh4drgXy718Ti+hWdkpEyM+Hib

Score

7^/10

Malware Config

Targets

- Target
  
  1c760d3ebcc7f2de3c65972ba918a60e89a2ecd09d252df1ce60aae8f8f585a2
- Size
  
  33KB
- MD5
  
  5aa3edfcff06a40602568c47faf2c17b
- SHA1
  
  5ea696578eb79a366335b7a9091a841f29a96a79
- SHA256
  
  1c760d3ebcc7f2de3c65972ba918a60e89a2ecd09d252df1ce60aae8f8f585a2
- SHA512
  
  df413f9208618f818043a455cbeba1c3f93f63773cd5582e2300fb43340de22290f4da3b8ce31b408410b7c6b7ba6367b2c64334f3206cde0d9a48cac9cebe8f
- SSDEEP
  
  384:rHh50gmTTKey4xCQhgbImrgaMXAuRmH0gBKk8TiGEU7ksW+hWdkpVdcaZcKJ++HE:rHhTnQh4drgXy718Ti+hWdkpEyM+Hib
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2