1d48fc48bc4e0bbafd3defadc3452266edd1c9b91ccafc7fc13fc8c40ba6f15f | Triage

Sharing

General

Target

67e49b12addd7dfe76416faa910bebd0
Size

37KB
Sample

240409-yf95vsgb72
MD5

67e49b12addd7dfe76416faa910bebd0
SHA1

66ad5c50b15556d09e7fe17fb9a32ae02c3c3dd1
SHA256

1d48fc48bc4e0bbafd3defadc3452266edd1c9b91ccafc7fc13fc8c40ba6f15f
SHA512

266c85a13e01a34661c010cf62ba41f341a65cd680b47e1b56c5f64ad82767f6a8908ea38fa67c5ae97c708493eb47cbd1fc0a18de905be0d1895d5e028d476d
SSDEEP

384:JC+EaVVpDSL/7wIUAch1A9NB/erdO9oMCCQcxbRxla0rh84KtI3/w9netgKPTv08:JSfL/76As1FdMQ8RjaeeILt//+SWRFw

Score

7^/10

Malware Config

Targets

- Target
  
  67e49b12addd7dfe76416faa910bebd0
- Size
  
  37KB
- MD5
  
  67e49b12addd7dfe76416faa910bebd0
- SHA1
  
  66ad5c50b15556d09e7fe17fb9a32ae02c3c3dd1
- SHA256
  
  1d48fc48bc4e0bbafd3defadc3452266edd1c9b91ccafc7fc13fc8c40ba6f15f
- SHA512
  
  266c85a13e01a34661c010cf62ba41f341a65cd680b47e1b56c5f64ad82767f6a8908ea38fa67c5ae97c708493eb47cbd1fc0a18de905be0d1895d5e028d476d
- SSDEEP
  
  384:JC+EaVVpDSL/7wIUAch1A9NB/erdO9oMCCQcxbRxla0rh84KtI3/w9netgKPTv08:JSfL/76As1FdMQ8RjaeeILt//+SWRFw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2