9b01887bbba7a45c0f5f6a9b19252554183f17b20e1bc7189a6abb0eafe38b9c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b01887bbba7a45c0f5f6a9b19252554183f17b20e1bc7189a6abb0eafe38b9c
Size

49KB
Sample

240313-1mnasaca85
MD5

147fe0d790f9914f7e5b8e1a7eda538f
SHA1

92e2cc9bc10510121abc5abb93908bad84e47c27
SHA256

9b01887bbba7a45c0f5f6a9b19252554183f17b20e1bc7189a6abb0eafe38b9c
SHA512

d5181eaa1ecb31b8786d7733f192917f17c8d8ac2847c4eb8fa4d8b79c6845436bb537a2df653d22ce56750e7080e6b362c6657399e76a1419a4b391cfdf7b74
SSDEEP

768:zOb7KtFXbKiciqI8LzwzGdgpH8tyfiQeOPRz2LWUMZX/8DBSCgrh5ZoA4Fn:CHKvXlLd8tuXeOZaLZgEDJc/ZY

Score

7^/10

Malware Config

Targets

- Target
  
  9b01887bbba7a45c0f5f6a9b19252554183f17b20e1bc7189a6abb0eafe38b9c
- Size
  
  49KB
- MD5
  
  147fe0d790f9914f7e5b8e1a7eda538f
- SHA1
  
  92e2cc9bc10510121abc5abb93908bad84e47c27
- SHA256
  
  9b01887bbba7a45c0f5f6a9b19252554183f17b20e1bc7189a6abb0eafe38b9c
- SHA512
  
  d5181eaa1ecb31b8786d7733f192917f17c8d8ac2847c4eb8fa4d8b79c6845436bb537a2df653d22ce56750e7080e6b362c6657399e76a1419a4b391cfdf7b74
- SSDEEP
  
  768:zOb7KtFXbKiciqI8LzwzGdgpH8tyfiQeOPRz2LWUMZX/8DBSCgrh5ZoA4Fn:CHKvXlLd8tuXeOZaLZgEDJc/ZY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2