c32f4bfdb3d77ebb8923e8a91721735b9cb4b24bd5e1dc5b2e2f986981000057 | Triage

Sharing

General

Target

c32f4bfdb3d77ebb8923e8a91721735b9cb4b24bd5e1dc5b2e2f986981000057
Size

869KB
Sample

240312-b9srcaef36
MD5

a5a1a5ba4a56e08024f36e9e9649f1a2
SHA1

94d772866a1aa74dac3baa3d4ef391b4bfa9ad43
SHA256

c32f4bfdb3d77ebb8923e8a91721735b9cb4b24bd5e1dc5b2e2f986981000057
SHA512

7c539bdc7d9f78e3f4f170dc2261a4e8293200ea9e2622e2d552c59fbf7bcd114ecb0e7db65acfd89bbbd2e28bc31787d39d4862432b6b8de566b31563b4ecb5
SSDEEP

12288:d+67XR9JSSxvYGdodHEDQ4LWfxWmZcazAii49Xoab2r:d+6N986Y7Fy

Score

7^/10

Malware Config

Targets

- Target
  
  c32f4bfdb3d77ebb8923e8a91721735b9cb4b24bd5e1dc5b2e2f986981000057
- Size
  
  869KB
- MD5
  
  a5a1a5ba4a56e08024f36e9e9649f1a2
- SHA1
  
  94d772866a1aa74dac3baa3d4ef391b4bfa9ad43
- SHA256
  
  c32f4bfdb3d77ebb8923e8a91721735b9cb4b24bd5e1dc5b2e2f986981000057
- SHA512
  
  7c539bdc7d9f78e3f4f170dc2261a4e8293200ea9e2622e2d552c59fbf7bcd114ecb0e7db65acfd89bbbd2e28bc31787d39d4862432b6b8de566b31563b4ecb5
- SSDEEP
  
  12288:d+67XR9JSSxvYGdodHEDQ4LWfxWmZcazAii49Xoab2r:d+6N986Y7Fy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2