bdd707c767b529ee3370f8189842bc36d6808d05429a1a01e82e2e3edab1c001 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdd707c767b529ee3370f8189842bc36d6808d05429a1a01e82e2e3edab1c001
Size

538KB
Sample

240315-3enyfsfe93
MD5

7b2d9668de3ad48f694255b67108576f
SHA1

e82842976504694ab9d471194a2aaa0793b5a7cf
SHA256

bdd707c767b529ee3370f8189842bc36d6808d05429a1a01e82e2e3edab1c001
SHA512

790c67f440951159ce63e2034852d9623f145f96428b1906379dcd59099a43b8eb4ed25ecbbf97f228033a2cec8756c88ecc290e1ff74e332af8ee89bc412676
SSDEEP

3072:wCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxH:wqDAwl0xPTMiR9JSSxPUKYGdodHE

Score

7^/10

Malware Config

Targets

- Target
  
  bdd707c767b529ee3370f8189842bc36d6808d05429a1a01e82e2e3edab1c001
- Size
  
  538KB
- MD5
  
  7b2d9668de3ad48f694255b67108576f
- SHA1
  
  e82842976504694ab9d471194a2aaa0793b5a7cf
- SHA256
  
  bdd707c767b529ee3370f8189842bc36d6808d05429a1a01e82e2e3edab1c001
- SHA512
  
  790c67f440951159ce63e2034852d9623f145f96428b1906379dcd59099a43b8eb4ed25ecbbf97f228033a2cec8756c88ecc290e1ff74e332af8ee89bc412676
- SSDEEP
  
  3072:wCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxH:wqDAwl0xPTMiR9JSSxPUKYGdodHE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2