fe948aee2865c647197443970205169d34300becff3265ebe2223208a560dec5 | Triage

Sharing

General

Target

cd4fa39d99d58ea96b81c12a8859ba2b
Size

404KB
Sample

240316-gwfshsde4v
MD5

cd4fa39d99d58ea96b81c12a8859ba2b
SHA1

5427575465c23cc2b7e38b13d7840d2862b5d324
SHA256

fe948aee2865c647197443970205169d34300becff3265ebe2223208a560dec5
SHA512

a5a839c700cd29df2ba88863a27a18525e44eda7e90988dc3ae999f092615a0ebc1f9b53dc50da759da5e77d001d1b7fc6bf1ccd1cab7b952349f97e278f25a0
SSDEEP

6144:Jl37vQRX5LmYj/6Me8JQnV6W8gTKlF2bbgT3F+G6JFYZYnS3xwC:bvmXNntxQnV6WdKlAAz0FYZYnS3xwC

Score

7^/10

Malware Config

Targets

- Target
  
  cd4fa39d99d58ea96b81c12a8859ba2b
- Size
  
  404KB
- MD5
  
  cd4fa39d99d58ea96b81c12a8859ba2b
- SHA1
  
  5427575465c23cc2b7e38b13d7840d2862b5d324
- SHA256
  
  fe948aee2865c647197443970205169d34300becff3265ebe2223208a560dec5
- SHA512
  
  a5a839c700cd29df2ba88863a27a18525e44eda7e90988dc3ae999f092615a0ebc1f9b53dc50da759da5e77d001d1b7fc6bf1ccd1cab7b952349f97e278f25a0
- SSDEEP
  
  6144:Jl37vQRX5LmYj/6Me8JQnV6W8gTKlF2bbgT3F+G6JFYZYnS3xwC:bvmXNntxQnV6WdKlAAz0FYZYnS3xwC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2