1bafc8f20b98bd78ee305a01725e8acbf4e0f71f034036be61e446e891e8c5be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df826bfbb8cac2ddb781f6f7eb62e75a
Size

27KB
Sample

240326-s1j7aadc28
MD5

df826bfbb8cac2ddb781f6f7eb62e75a
SHA1

9791f4135fd61b847119e26f0c3dfec777bf52ba
SHA256

1bafc8f20b98bd78ee305a01725e8acbf4e0f71f034036be61e446e891e8c5be
SHA512

e47a0a505a77eb919fe24482421d0fd821f290e9ea0c28b8ade42793ba5426926db813a5cc6e5a0a3a5873f23489adbe9a42ad37f4d5959589f7038ac7d5ab49
SSDEEP

384:OG4TebV6dbuoh1kX681FN6BAZAHnHz5JlBo/my2:Ieb0brB81FQ/HntJdy2

Score

7^/10

Malware Config

Targets

- Target
  
  df826bfbb8cac2ddb781f6f7eb62e75a
- Size
  
  27KB
- MD5
  
  df826bfbb8cac2ddb781f6f7eb62e75a
- SHA1
  
  9791f4135fd61b847119e26f0c3dfec777bf52ba
- SHA256
  
  1bafc8f20b98bd78ee305a01725e8acbf4e0f71f034036be61e446e891e8c5be
- SHA512
  
  e47a0a505a77eb919fe24482421d0fd821f290e9ea0c28b8ade42793ba5426926db813a5cc6e5a0a3a5873f23489adbe9a42ad37f4d5959589f7038ac7d5ab49
- SSDEEP
  
  384:OG4TebV6dbuoh1kX681FN6BAZAHnHz5JlBo/my2:Ieb0brB81FQ/HntJdy2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2