bb487daff10c8c5a3475c050c49ff74e661a33bcde4f4a11ab30ce895139dd5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f7a166a9301d6276e4997b7c338572d
Size

33KB
Sample

240410-gffgtahe5y
MD5

1f7a166a9301d6276e4997b7c338572d
SHA1

e7548aea844dea7ab0039b343dd1fe73407bdc5f
SHA256

bb487daff10c8c5a3475c050c49ff74e661a33bcde4f4a11ab30ce895139dd5d
SHA512

9784969c8c03472e0247ac858b58f67df5fafd42fe298f3169f92881f7eeaef2a18a0036788d8c39e436c2eb411db25880e36afb162e85c2d5cbfa7014fa0d15
SSDEEP

384:nWzwZcuieV9yzK1/50F+xX9zm4s5KFB6Eq8TULYCry31zVYjgJpU33j:W9eVPiaXxm4skB+YCGFzVYj7Hj

Score

7^/10

Malware Config

Targets

- Target
  
  1f7a166a9301d6276e4997b7c338572d
- Size
  
  33KB
- MD5
  
  1f7a166a9301d6276e4997b7c338572d
- SHA1
  
  e7548aea844dea7ab0039b343dd1fe73407bdc5f
- SHA256
  
  bb487daff10c8c5a3475c050c49ff74e661a33bcde4f4a11ab30ce895139dd5d
- SHA512
  
  9784969c8c03472e0247ac858b58f67df5fafd42fe298f3169f92881f7eeaef2a18a0036788d8c39e436c2eb411db25880e36afb162e85c2d5cbfa7014fa0d15
- SSDEEP
  
  384:nWzwZcuieV9yzK1/50F+xX9zm4s5KFB6Eq8TULYCry31zVYjgJpU33j:W9eVPiaXxm4skB+YCGFzVYj7Hj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2