72d6af187abfc5474eee2a0cee8a9a8cec2c5e4c10eac480b27399ecb7623737 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

72d6af187abfc5474eee2a0cee8a9a8cec2c5e4c10eac480b27399ecb7623737
Size

910KB
Sample

240328-1kynqsaa79
MD5

37a77e12e46001b4008327c558f5c94a
SHA1

e541bedc7212d55ccb20250b5a6c6fdd2ed74104
SHA256

72d6af187abfc5474eee2a0cee8a9a8cec2c5e4c10eac480b27399ecb7623737
SHA512

409136481efd863531f93643eda39cea5656d4f857e18c870164fe07eb66c09a14d6fd57d04dce4bb137ee48e3b1b94b6b66f916f74d4c313cdb96275bbd7c9b
SSDEEP

6144:sqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jI25TQ:s+67XR9JSSxvYGdodH/1CVc1CVIws

Score

7^/10

Malware Config

Targets

- Target
  
  72d6af187abfc5474eee2a0cee8a9a8cec2c5e4c10eac480b27399ecb7623737
- Size
  
  910KB
- MD5
  
  37a77e12e46001b4008327c558f5c94a
- SHA1
  
  e541bedc7212d55ccb20250b5a6c6fdd2ed74104
- SHA256
  
  72d6af187abfc5474eee2a0cee8a9a8cec2c5e4c10eac480b27399ecb7623737
- SHA512
  
  409136481efd863531f93643eda39cea5656d4f857e18c870164fe07eb66c09a14d6fd57d04dce4bb137ee48e3b1b94b6b66f916f74d4c313cdb96275bbd7c9b
- SSDEEP
  
  6144:sqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jk2jcbaqE7Al8jk2jI25TQ:s+67XR9JSSxvYGdodH/1CVc1CVIws
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2