ed4f5e7a284e2a592bf74112e4ffb539a278795354cb75a3cd6aa4e56449b5c0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Output.exe
Size

455KB
Sample

240314-stchvsfe7y
MD5

38f96f6043244e62607c425fac829641
SHA1

85be7104ccdb117682e3e4e502d3e28950d8059a
SHA256

ed4f5e7a284e2a592bf74112e4ffb539a278795354cb75a3cd6aa4e56449b5c0
SHA512

22f0ebbc540abc372d2615747b24a47edee5037035680b74d43313761d8784395c8471b52c828877ee7cea5651750f677aedb3f2aa98fa77a8ab642da0b16ced
SSDEEP

6144:hDWT0hnENyamK99TooeF3kfdavvz3cDlfYXldAEbj6oeO4myLD+6v6PVYmE:hDWT0VnamK70o6kQzcD2v8FLi6v6i

Score

7^/10

Malware Config

Targets

- Target
  
  Output.exe
- Size
  
  455KB
- MD5
  
  38f96f6043244e62607c425fac829641
- SHA1
  
  85be7104ccdb117682e3e4e502d3e28950d8059a
- SHA256
  
  ed4f5e7a284e2a592bf74112e4ffb539a278795354cb75a3cd6aa4e56449b5c0
- SHA512
  
  22f0ebbc540abc372d2615747b24a47edee5037035680b74d43313761d8784395c8471b52c828877ee7cea5651750f677aedb3f2aa98fa77a8ab642da0b16ced
- SSDEEP
  
  6144:hDWT0hnENyamK99TooeF3kfdavvz3cDlfYXldAEbj6oeO4myLD+6v6PVYmE:hDWT0VnamK70o6kQzcD2v8FLi6v6i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2