571ddee9f9f8c1e7cfdea01641fdcc0fc13e1f0c47fd5dff6a624cffe65dc4cc | Triage

Sharing

General

Target

c96c5d530a139ef90b4df57143a74945
Size

41KB
Sample

240314-x5ngqafa59
MD5

c96c5d530a139ef90b4df57143a74945
SHA1

bcf94b5eee2365aa1f7523d78743d36f89ffb729
SHA256

571ddee9f9f8c1e7cfdea01641fdcc0fc13e1f0c47fd5dff6a624cffe65dc4cc
SHA512

757c1a6125752c8fce9b0a6ec5720e9ff10ceb1d9c0f9c058517ca8c6fff08257b26520fa70f5849343a689a783b67a0dc5944081a26ebadccf4525a6eeda8af
SSDEEP

768:/whRkKCCR3IAm9MOlq8bdA/bmerdkDwRGXn/+mmCfyrr7/YWb:s5Hm9dl4/tuDz/+mjfut

Score

7^/10

Malware Config

Targets

- Target
  
  c96c5d530a139ef90b4df57143a74945
- Size
  
  41KB
- MD5
  
  c96c5d530a139ef90b4df57143a74945
- SHA1
  
  bcf94b5eee2365aa1f7523d78743d36f89ffb729
- SHA256
  
  571ddee9f9f8c1e7cfdea01641fdcc0fc13e1f0c47fd5dff6a624cffe65dc4cc
- SHA512
  
  757c1a6125752c8fce9b0a6ec5720e9ff10ceb1d9c0f9c058517ca8c6fff08257b26520fa70f5849343a689a783b67a0dc5944081a26ebadccf4525a6eeda8af
- SSDEEP
  
  768:/whRkKCCR3IAm9MOlq8bdA/bmerdkDwRGXn/+mmCfyrr7/YWb:s5Hm9dl4/tuDz/+mjfut
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2