d678c16ddfed96314e5c5a16751efbfa2136ce70f81a780273e1f3706981f70d | Triage

Sharing

General

Target

tmp
Size

3.1MB
Sample

240315-hx7hasaf4z
MD5

ec30099424ac591d412d7af70500cd27
SHA1

053e567d81dba4ce07efad343193bae917cdf117
SHA256

d678c16ddfed96314e5c5a16751efbfa2136ce70f81a780273e1f3706981f70d
SHA512

4eb3902fa7b0a8b2f7a16e33b284717e4465146e64c0d8968699abf947d603aad7d971a7b73aa6ed70e3a9b9bf21812508a9e209a1c8dcf6da849e7f7df73fba
SSDEEP

98304:E/5TvaInDQBJ+kASYRpHvAhF8VJV64wxa:E/xvaInDeJXASYRpPcF8VJg4wE

Score

7^/10

Malware Config

Targets

- Target
  
  tmp
- Size
  
  3.1MB
- MD5
  
  ec30099424ac591d412d7af70500cd27
- SHA1
  
  053e567d81dba4ce07efad343193bae917cdf117
- SHA256
  
  d678c16ddfed96314e5c5a16751efbfa2136ce70f81a780273e1f3706981f70d
- SHA512
  
  4eb3902fa7b0a8b2f7a16e33b284717e4465146e64c0d8968699abf947d603aad7d971a7b73aa6ed70e3a9b9bf21812508a9e209a1c8dcf6da849e7f7df73fba
- SSDEEP
  
  98304:E/5TvaInDQBJ+kASYRpHvAhF8VJV64wxa:E/xvaInDeJXASYRpPcF8VJg4wE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2