898ff5567d3d35505827f207a6084076499cecdc6b7d08e46d3423a7df8fe09e | Triage

Sharing

General

Target

898ff5567d3d35505827f207a6084076499cecdc6b7d08e46d3423a7df8fe09e
Size

32KB
Sample

240313-z4ymeabc54
MD5

a4f1aa09d04498473138967a32f151ee
SHA1

0d00b4552326b3dbb81d954c66d1a82a3755f4cf
SHA256

898ff5567d3d35505827f207a6084076499cecdc6b7d08e46d3423a7df8fe09e
SHA512

8ff4bb26613ecaf654af0e8bfd6236a4fa9131db0b107c8a7ac12cf5caae3fa50c8e916117e454d04479b8efcd9d0a1c90f858c78738a81b38ae25ad59d68cf8
SSDEEP

384:sAI5y8tO/IgoM7cslMSa8AWpC81HMPQQQCH3oS97PeTL/oxFTSkuWmg:sAI5y4MnESa8AWoHnKv/2FWkJ1

Score

7^/10

Malware Config

Targets

- Target
  
  898ff5567d3d35505827f207a6084076499cecdc6b7d08e46d3423a7df8fe09e
- Size
  
  32KB
- MD5
  
  a4f1aa09d04498473138967a32f151ee
- SHA1
  
  0d00b4552326b3dbb81d954c66d1a82a3755f4cf
- SHA256
  
  898ff5567d3d35505827f207a6084076499cecdc6b7d08e46d3423a7df8fe09e
- SHA512
  
  8ff4bb26613ecaf654af0e8bfd6236a4fa9131db0b107c8a7ac12cf5caae3fa50c8e916117e454d04479b8efcd9d0a1c90f858c78738a81b38ae25ad59d68cf8
- SSDEEP
  
  384:sAI5y8tO/IgoM7cslMSa8AWpC81HMPQQQCH3oS97PeTL/oxFTSkuWmg:sAI5y4MnESa8AWoHnKv/2FWkJ1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2