671d980fc8d4fa10b3f2491de38d6a2a0f412f0afc7c8fa5fdae597f4c2b4b76 | Triage

Resubmissions

15/03/2024, 10:25

240315-mf1qmsea9z 7

15/03/2024, 10:21

240315-mdn9tsea5w 7

15/03/2024, 10:18

240315-mccveaea2w 4

Sharing

Copy URL Twitter E-mail

General

Target

252451.rar
Size

10.9MB
Sample

240315-mf1qmsea9z
MD5

1869e48d7c3864c5cf866dd94d4ca782
SHA1

58bb33b83e1d0959cab200b43fe4e1a10bf596ff
SHA256

671d980fc8d4fa10b3f2491de38d6a2a0f412f0afc7c8fa5fdae597f4c2b4b76
SHA512

d5a60a9da8f62b90fd053673a0707400223c61a8f32425e667cae89b8ff79750847dc4a70e37e4c10ff8cc30194d87a1ef03e2b9eafd97ec362f9d2776de046a
SSDEEP

196608:oof+Viel3/8R2lfjI1tZz5gV5sTGueaE5O/WTldZq3Wmk6t7Jr376ltz:o4+r3ERoEhqIV/alqht7JiX

Score

7^/10

Malware Config

Targets

- Target
  
  252451.rar
- Size
  
  10.9MB
- MD5
  
  1869e48d7c3864c5cf866dd94d4ca782
- SHA1
  
  58bb33b83e1d0959cab200b43fe4e1a10bf596ff
- SHA256
  
  671d980fc8d4fa10b3f2491de38d6a2a0f412f0afc7c8fa5fdae597f4c2b4b76
- SHA512
  
  d5a60a9da8f62b90fd053673a0707400223c61a8f32425e667cae89b8ff79750847dc4a70e37e4c10ff8cc30194d87a1ef03e2b9eafd97ec362f9d2776de046a
- SSDEEP
  
  196608:oof+Viel3/8R2lfjI1tZz5gV5sTGueaE5O/WTldZq3Wmk6t7Jr376ltz:o4+r3ERoEhqIV/alqht7JiX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2