5e37add3f5ec01939b47aa0a639dd13ad2ab4344a6b20a4618f1ce071d88c55b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e37add3f5ec01939b47aa0a639dd13ad2ab4344a6b20a4618f1ce071d88c55b
Size

123KB
Sample

240328-zec96sga31
MD5

9eb224f8453b3ba27e5b69532bc88cee
SHA1

066ff92390c3a6f8e993fab5a9050c64dfa8fd13
SHA256

5e37add3f5ec01939b47aa0a639dd13ad2ab4344a6b20a4618f1ce071d88c55b
SHA512

add11f6f4ffb53db67d4743107eea78c702679464ab8e0bc6ce0912405196d05e963c85a78a4597bfb0dffe3883ddcdbb7d6c3df73434dac0a2c3ab8ecb968c7
SSDEEP

768:EZ2iWT8y3tAErzJNiX/LGGE+sLR7Sh0iFZu7vDdgSIm:EZ2iW/3rzJNETGGvsFiFZcDdgS1

Score

7^/10

Malware Config

Targets

- Target
  
  5e37add3f5ec01939b47aa0a639dd13ad2ab4344a6b20a4618f1ce071d88c55b
- Size
  
  123KB
- MD5
  
  9eb224f8453b3ba27e5b69532bc88cee
- SHA1
  
  066ff92390c3a6f8e993fab5a9050c64dfa8fd13
- SHA256
  
  5e37add3f5ec01939b47aa0a639dd13ad2ab4344a6b20a4618f1ce071d88c55b
- SHA512
  
  add11f6f4ffb53db67d4743107eea78c702679464ab8e0bc6ce0912405196d05e963c85a78a4597bfb0dffe3883ddcdbb7d6c3df73434dac0a2c3ab8ecb968c7
- SSDEEP
  
  768:EZ2iWT8y3tAErzJNiX/LGGE+sLR7Sh0iFZu7vDdgSIm:EZ2iW/3rzJNETGGvsFiFZcDdgS1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2