55ce783dfb77a157fecb17badf27b31d8c12e2fa5d4b6eb7b3688d75f6a093d9 | Triage

Sharing

General

Target

16738f935ca7f46892781854eb9d761a.bin
Size

49KB
Sample

240329-bgzn7add7z
MD5

16738f935ca7f46892781854eb9d761a
SHA1

95f9d9abc25a42a4611bc80bb91b20c9920cfd93
SHA256

55ce783dfb77a157fecb17badf27b31d8c12e2fa5d4b6eb7b3688d75f6a093d9
SHA512

2d4319dd6d57a7e91d16d611dc1887652b46ae28fb704ea651f3a49afb5e92061a911497a117263c50dbaf8e6b0c0e8542e6189685327e7de239ee6ac7d0a462
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHu:6j+1NMOtEvwDpjr8hhXiO

Score

7^/10

Malware Config

Targets

- Target
  
  16738f935ca7f46892781854eb9d761a.bin
- Size
  
  49KB
- MD5
  
  16738f935ca7f46892781854eb9d761a
- SHA1
  
  95f9d9abc25a42a4611bc80bb91b20c9920cfd93
- SHA256
  
  55ce783dfb77a157fecb17badf27b31d8c12e2fa5d4b6eb7b3688d75f6a093d9
- SHA512
  
  2d4319dd6d57a7e91d16d611dc1887652b46ae28fb704ea651f3a49afb5e92061a911497a117263c50dbaf8e6b0c0e8542e6189685327e7de239ee6ac7d0a462
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHu:6j+1NMOtEvwDpjr8hhXiO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2