c1bc3e7da891c24ffc613ba7b6901374b40fa08f3c8d84a62ab0852dda3f35c4 | Triage

Sharing

General

Target

026ff611abd1524c4f7ac4db88518b7d
Size

29KB
Sample

240409-z12vnabb73
MD5

026ff611abd1524c4f7ac4db88518b7d
SHA1

e747466eafd4c3669b5eba0e368b9f76be0ef50f
SHA256

c1bc3e7da891c24ffc613ba7b6901374b40fa08f3c8d84a62ab0852dda3f35c4
SHA512

435c5a3f2584cca14ba6fc53b70affb5d01c06804d9d77672235d03c1ec854d148f023d7b9dd5308ab36334b8669d281552fe649d196a3a3a4d333648b57bbef
SSDEEP

384:eApc8m4e0GvQak4JI341C0abnLbYXlle2xEfvEu:eApQr0GvdFJI34qLHYX3e2x+D

Score

7^/10

Malware Config

Targets

- Target
  
  026ff611abd1524c4f7ac4db88518b7d
- Size
  
  29KB
- MD5
  
  026ff611abd1524c4f7ac4db88518b7d
- SHA1
  
  e747466eafd4c3669b5eba0e368b9f76be0ef50f
- SHA256
  
  c1bc3e7da891c24ffc613ba7b6901374b40fa08f3c8d84a62ab0852dda3f35c4
- SHA512
  
  435c5a3f2584cca14ba6fc53b70affb5d01c06804d9d77672235d03c1ec854d148f023d7b9dd5308ab36334b8669d281552fe649d196a3a3a4d333648b57bbef
- SSDEEP
  
  384:eApc8m4e0GvQak4JI341C0abnLbYXlle2xEfvEu:eApQr0GvdFJI34qLHYX3e2x+D
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2