3543ba253dc970f26d89deed5f2175a0646ee365335d32d7fda97f728cee3af9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80d575bd5d519ba60f184e49f98d6d01
Size

46KB
Sample

240409-ynbl9sge57
MD5

80d575bd5d519ba60f184e49f98d6d01
SHA1

a267147aee4b4b5fc9f6a62a0a85313608294dd2
SHA256

3543ba253dc970f26d89deed5f2175a0646ee365335d32d7fda97f728cee3af9
SHA512

5441d55b0fe61e9acc4e9e4a1f7d2092c805ff834d7481c99a61fdba5b118b411a6339eb8c55c4115c33d55df534fdd46ed1b024efd1197842a0d96989204249
SSDEEP

768:dD2oV2AJblQRNLzFrSNTVebqxjxMQhMk6Cda2gJx:dCoVXGRTuhBxj/hY3Jx

Score

7^/10

Malware Config

Targets

- Target
  
  80d575bd5d519ba60f184e49f98d6d01
- Size
  
  46KB
- MD5
  
  80d575bd5d519ba60f184e49f98d6d01
- SHA1
  
  a267147aee4b4b5fc9f6a62a0a85313608294dd2
- SHA256
  
  3543ba253dc970f26d89deed5f2175a0646ee365335d32d7fda97f728cee3af9
- SHA512
  
  5441d55b0fe61e9acc4e9e4a1f7d2092c805ff834d7481c99a61fdba5b118b411a6339eb8c55c4115c33d55df534fdd46ed1b024efd1197842a0d96989204249
- SSDEEP
  
  768:dD2oV2AJblQRNLzFrSNTVebqxjxMQhMk6Cda2gJx:dCoVXGRTuhBxj/hY3Jx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2