fd35b45bb3f89f383109b1d833e2428cbfa4b258fea81e69537cc6052caab72a | Triage

Sharing

General

Target

fd35b45bb3f89f383109b1d833e2428cbfa4b258fea81e69537cc6052caab72a
Size

102KB
Sample

240312-en3afahh99
MD5

b80beba5174473e0236de21000b900c3
SHA1

45421cff0f84fcf3a61bb558f8b504f33af57453
SHA256

fd35b45bb3f89f383109b1d833e2428cbfa4b258fea81e69537cc6052caab72a
SHA512

f42c24200e1f8ffe06225024eff639d0735857db92df9858fa21dd2fcf3a00b15cbad7ce3bc20e5cd414f6bcd1f721b0eaeb28f06227264268f5244c73310041
SSDEEP

1536:rrwIBoW3L+hknFdMMs/mBP6ipzOW2+3GHSesGYHKhSGlr:rsWolsFdMMsgOW+HSAN

Score

7^/10

Malware Config

Targets

- Target
  
  fd35b45bb3f89f383109b1d833e2428cbfa4b258fea81e69537cc6052caab72a
- Size
  
  102KB
- MD5
  
  b80beba5174473e0236de21000b900c3
- SHA1
  
  45421cff0f84fcf3a61bb558f8b504f33af57453
- SHA256
  
  fd35b45bb3f89f383109b1d833e2428cbfa4b258fea81e69537cc6052caab72a
- SHA512
  
  f42c24200e1f8ffe06225024eff639d0735857db92df9858fa21dd2fcf3a00b15cbad7ce3bc20e5cd414f6bcd1f721b0eaeb28f06227264268f5244c73310041
- SSDEEP
  
  1536:rrwIBoW3L+hknFdMMs/mBP6ipzOW2+3GHSesGYHKhSGlr:rsWolsFdMMsgOW+HSAN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2