71348be13edefb2bc6c904b2fe6d1dc3e57947803f3b00e70a26c001d66dd954 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

71348be13edefb2bc6c904b2fe6d1dc3e57947803f3b00e70a26c001d66dd954
Size

37KB
Sample

240408-18qyssgg8z
MD5

dd180eb2da9e57593df3b880fc7c09ec
SHA1

880e748ba605bcea7e57aca3a41de732e5f11bfc
SHA256

71348be13edefb2bc6c904b2fe6d1dc3e57947803f3b00e70a26c001d66dd954
SHA512

d4020dbfafd2d6bf7a9d0e773b27020df5af8b8a44de2099defbe7cf8af68dff28aa97fd1e8c31e9dacda17e7b22f571a21d83c4af8bf5230b5b31cfaa0ec9e0
SSDEEP

768:JVs952ISmO6v4soa5eOfl4ezZoS62iZalG9:w5ZRl4KT62Ywq

Score

7^/10

Malware Config

Targets

- Target
  
  71348be13edefb2bc6c904b2fe6d1dc3e57947803f3b00e70a26c001d66dd954
- Size
  
  37KB
- MD5
  
  dd180eb2da9e57593df3b880fc7c09ec
- SHA1
  
  880e748ba605bcea7e57aca3a41de732e5f11bfc
- SHA256
  
  71348be13edefb2bc6c904b2fe6d1dc3e57947803f3b00e70a26c001d66dd954
- SHA512
  
  d4020dbfafd2d6bf7a9d0e773b27020df5af8b8a44de2099defbe7cf8af68dff28aa97fd1e8c31e9dacda17e7b22f571a21d83c4af8bf5230b5b31cfaa0ec9e0
- SSDEEP
  
  768:JVs952ISmO6v4soa5eOfl4ezZoS62iZalG9:w5ZRl4KT62Ywq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2