3826ee4739fae4efb4c4b3177ed57ce4b52b9711bdd7fcb089f26fda22d7d2a9 | Triage

Sharing

General

Target

3826ee4739fae4efb4c4b3177ed57ce4b52b9711bdd7fcb089f26fda22d7d2a9
Size

41KB
Sample

240404-ynjmwahe27
MD5

40c6a18bfae679c9d25e9d960e9c9e83
SHA1

fa462166aa17623ba9416864e2e125960e8b7345
SHA256

3826ee4739fae4efb4c4b3177ed57ce4b52b9711bdd7fcb089f26fda22d7d2a9
SHA512

9030520ca2b7d9331675563a19049b20fe2ccdc5be5f5414f45b0783d91532eac97cac4b58725ebfa19a98dab5f56ae28a01232533b1d715b65b65f3c8f88a5e
SSDEEP

384:AQWRRIWCwovIVhraM7WT4EOyyA87fZHg8FKVN1ICrL:AhRyvm7oOyyA87fdICcL

Score

7^/10

Malware Config

Targets

- Target
  
  3826ee4739fae4efb4c4b3177ed57ce4b52b9711bdd7fcb089f26fda22d7d2a9
- Size
  
  41KB
- MD5
  
  40c6a18bfae679c9d25e9d960e9c9e83
- SHA1
  
  fa462166aa17623ba9416864e2e125960e8b7345
- SHA256
  
  3826ee4739fae4efb4c4b3177ed57ce4b52b9711bdd7fcb089f26fda22d7d2a9
- SHA512
  
  9030520ca2b7d9331675563a19049b20fe2ccdc5be5f5414f45b0783d91532eac97cac4b58725ebfa19a98dab5f56ae28a01232533b1d715b65b65f3c8f88a5e
- SSDEEP
  
  384:AQWRRIWCwovIVhraM7WT4EOyyA87fZHg8FKVN1ICrL:AhRyvm7oOyyA87fdICcL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2