a26fb9698eac9ee02b4ca7c65433483ee6f0a967b8b3096cda294f245f93daae | Triage

Sharing

General

Target

a26fb9698eac9ee02b4ca7c65433483ee6f0a967b8b3096cda294f245f93daae
Size

32KB
Sample

240327-2zslpsge5v
MD5

f4e6103df47a435c1084d88e335f3076
SHA1

0b020accbdf46f96fab024d92eaca4a1d6e9eeee
SHA256

a26fb9698eac9ee02b4ca7c65433483ee6f0a967b8b3096cda294f245f93daae
SHA512

fbcef1bd6f4499ded28cb1b2738f9f9deddea9661e00809eb9fc47c05bb25fd6df29628bc06e423dc06773d61d2d9d9dc9c98938cf8b1d1b8cef0509e9d0992c
SSDEEP

384:oPDUQ/pgeUkI74UHCsD2GAYIPHbABKwSU3Fexbzm+4VWuMGY:+l/43MUHB2XtvbA8QO6+SWgY

Score

7^/10

Malware Config

Targets

- Target
  
  a26fb9698eac9ee02b4ca7c65433483ee6f0a967b8b3096cda294f245f93daae
- Size
  
  32KB
- MD5
  
  f4e6103df47a435c1084d88e335f3076
- SHA1
  
  0b020accbdf46f96fab024d92eaca4a1d6e9eeee
- SHA256
  
  a26fb9698eac9ee02b4ca7c65433483ee6f0a967b8b3096cda294f245f93daae
- SHA512
  
  fbcef1bd6f4499ded28cb1b2738f9f9deddea9661e00809eb9fc47c05bb25fd6df29628bc06e423dc06773d61d2d9d9dc9c98938cf8b1d1b8cef0509e9d0992c
- SSDEEP
  
  384:oPDUQ/pgeUkI74UHCsD2GAYIPHbABKwSU3Fexbzm+4VWuMGY:+l/43MUHB2XtvbA8QO6+SWgY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2