73f6d570619ed0d015a36dcdd797da1f3f4d42112d38270a1a15a502a7051a7d | Triage

Sharing

General

Target

73f6d570619ed0d015a36dcdd797da1f3f4d42112d38270a1a15a502a7051a7d
Size

31KB
Sample

240314-zhanfsgg53
MD5

5ffd7299468ae63669681df7921399c9
SHA1

50c5f4dddcfa7f43b1f7e2af663fe377e48a9add
SHA256

73f6d570619ed0d015a36dcdd797da1f3f4d42112d38270a1a15a502a7051a7d
SHA512

01ecc501fe279e75cb905525199fed5d4e607207f704648e5c18d32ef014fafc542b51c7e4950ec1af7d0689a1faea97d3bc6da56a72eadf11e32e19c3049fea
SSDEEP

384:rHh50gmTTKey4xCQhgbImrgaMXAuRmH0gBKk8TiGEU7ksW+hWdkpVdcaZcKJCRTN:rHhTnQh4drgXy718Ti+hWdkpEy4

Score

7^/10

Malware Config

Targets

- Target
  
  73f6d570619ed0d015a36dcdd797da1f3f4d42112d38270a1a15a502a7051a7d
- Size
  
  31KB
- MD5
  
  5ffd7299468ae63669681df7921399c9
- SHA1
  
  50c5f4dddcfa7f43b1f7e2af663fe377e48a9add
- SHA256
  
  73f6d570619ed0d015a36dcdd797da1f3f4d42112d38270a1a15a502a7051a7d
- SHA512
  
  01ecc501fe279e75cb905525199fed5d4e607207f704648e5c18d32ef014fafc542b51c7e4950ec1af7d0689a1faea97d3bc6da56a72eadf11e32e19c3049fea
- SSDEEP
  
  384:rHh50gmTTKey4xCQhgbImrgaMXAuRmH0gBKk8TiGEU7ksW+hWdkpVdcaZcKJCRTN:rHhTnQh4drgXy718Ti+hWdkpEy4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2