1385cd63c110954c0f279e9d08789b7e417b318db8319c444fb889ec622613a4 | Triage

Sharing

General

Target

d64e5f19284e6604e3f376072774fdf2
Size

570KB
Sample

240319-rfpqlaee9x
MD5

d64e5f19284e6604e3f376072774fdf2
SHA1

31dffc36922d17a531e67d04b113af443a849b26
SHA256

1385cd63c110954c0f279e9d08789b7e417b318db8319c444fb889ec622613a4
SHA512

e059aef86538becf00bdb7d3657699a325cd8e747adb7ab4bf92f52a89cabc93c4a152f68b5ba33bb3b7badeb5da7308b3a9bea5e019ab12736a00edf589776c
SSDEEP

12288:Ojd9b+TsBRlrqyz73RAgMm13Do6j5uFzoxGY3RXqKj+f6AdK:OB9b+Op7BTo6s8xH3zSf6A0

Score

7^/10

Malware Config

Targets

- Target
  
  d64e5f19284e6604e3f376072774fdf2
- Size
  
  570KB
- MD5
  
  d64e5f19284e6604e3f376072774fdf2
- SHA1
  
  31dffc36922d17a531e67d04b113af443a849b26
- SHA256
  
  1385cd63c110954c0f279e9d08789b7e417b318db8319c444fb889ec622613a4
- SHA512
  
  e059aef86538becf00bdb7d3657699a325cd8e747adb7ab4bf92f52a89cabc93c4a152f68b5ba33bb3b7badeb5da7308b3a9bea5e019ab12736a00edf589776c
- SSDEEP
  
  12288:Ojd9b+TsBRlrqyz73RAgMm13Do6j5uFzoxGY3RXqKj+f6AdK:OB9b+Op7BTo6s8xH3zSf6A0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2