c8f8b45a78cb576d3d3afeb3e5a02dd68729086b3ce4db634374fb3edee83590 | Triage

Sharing

General

Target

a2d1e3d9cbb1649b36b293634336d6f4
Size

40KB
Sample

240409-24j55acc41
MD5

a2d1e3d9cbb1649b36b293634336d6f4
SHA1

e708834f771f52883f5a0f98c21d554e821d3ec6
SHA256

c8f8b45a78cb576d3d3afeb3e5a02dd68729086b3ce4db634374fb3edee83590
SHA512

ed9c00f1bdc2fa91bffe6c059a3e062e0f1817a5a152205b34af4b6d4adfec9aca6169ef1cb35bbf66e61a214d7fea418c0af65b5d940e0fddb996ff8f489ce6
SSDEEP

384:xoYprsLFt+f5Q75Q+4wTzJldd1m5ahkBQXhRUy4:xoasxtEg5Qm9tRmQXkv

Score

7^/10

Malware Config

Targets

- Target
  
  a2d1e3d9cbb1649b36b293634336d6f4
- Size
  
  40KB
- MD5
  
  a2d1e3d9cbb1649b36b293634336d6f4
- SHA1
  
  e708834f771f52883f5a0f98c21d554e821d3ec6
- SHA256
  
  c8f8b45a78cb576d3d3afeb3e5a02dd68729086b3ce4db634374fb3edee83590
- SHA512
  
  ed9c00f1bdc2fa91bffe6c059a3e062e0f1817a5a152205b34af4b6d4adfec9aca6169ef1cb35bbf66e61a214d7fea418c0af65b5d940e0fddb996ff8f489ce6
- SSDEEP
  
  384:xoYprsLFt+f5Q75Q+4wTzJldd1m5ahkBQXhRUy4:xoasxtEg5Qm9tRmQXkv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2