ea0a14540b8a1f99d24936a73e84ce668accf12ebcf0eef5e56a9b6cc8cfeac5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c508b55c3df9a4d348c49bf7030c3dd5
Size

15KB
Sample

240313-fmptdsfb46
MD5

c508b55c3df9a4d348c49bf7030c3dd5
SHA1

5d17b35a7d5b58d267424074fb28797560c89602
SHA256

ea0a14540b8a1f99d24936a73e84ce668accf12ebcf0eef5e56a9b6cc8cfeac5
SHA512

3a3301d7423216614835a60566071c54e39e24a0b4649a72f76a61cd3e0a484a85c40dce72bd674858c902ef5f04f2e5474c97477a9d6c373ef978ecc1b5ec20
SSDEEP

384:QLcTQvmFzKbE+QwuC6WREiHQqYBkUn/8yIYNMLYo:QqQmFL+QMC9B1QYm

Score

7^/10

Malware Config

Targets

- Target
  
  c508b55c3df9a4d348c49bf7030c3dd5
- Size
  
  15KB
- MD5
  
  c508b55c3df9a4d348c49bf7030c3dd5
- SHA1
  
  5d17b35a7d5b58d267424074fb28797560c89602
- SHA256
  
  ea0a14540b8a1f99d24936a73e84ce668accf12ebcf0eef5e56a9b6cc8cfeac5
- SHA512
  
  3a3301d7423216614835a60566071c54e39e24a0b4649a72f76a61cd3e0a484a85c40dce72bd674858c902ef5f04f2e5474c97477a9d6c373ef978ecc1b5ec20
- SSDEEP
  
  384:QLcTQvmFzKbE+QwuC6WREiHQqYBkUn/8yIYNMLYo:QqQmFL+QMC9B1QYm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2