68c45bf51c41de5e5cc35f9387d9baa7bbd9a0361c20ef11aa89f7e907ad1dde | Triage

Sharing

Copy URL Twitter E-mail

General

Target

68c45bf51c41de5e5cc35f9387d9baa7bbd9a0361c20ef11aa89f7e907ad1dde
Size

1.2MB
Sample

240415-bfwk5sad57
MD5

8a8ba4406b392a08740182aaee1a5588
SHA1

81cefa1f8c3e5d49287ed1fc64f88c2c8bcf789b
SHA256

68c45bf51c41de5e5cc35f9387d9baa7bbd9a0361c20ef11aa89f7e907ad1dde
SHA512

816f9fe15c63f9e30bbf0f42d3a3e0ff8809d7cef2298d2e1316eddbe3e704150eb8dfe0d42bb22c358a552b3b5fe96a9ffbc661332e37f29e39077223493dcd
SSDEEP

24576:O5WHS04YNEMuExDiU6E5R9s8xY/2l/dRJ5dtsPxNGfH2NIbt+rV:O5Wd4auS+UjfU2T/5XD+NIbt+r

Score

7^/10

Malware Config

Targets

- Target
  
  68c45bf51c41de5e5cc35f9387d9baa7bbd9a0361c20ef11aa89f7e907ad1dde
- Size
  
  1.2MB
- MD5
  
  8a8ba4406b392a08740182aaee1a5588
- SHA1
  
  81cefa1f8c3e5d49287ed1fc64f88c2c8bcf789b
- SHA256
  
  68c45bf51c41de5e5cc35f9387d9baa7bbd9a0361c20ef11aa89f7e907ad1dde
- SHA512
  
  816f9fe15c63f9e30bbf0f42d3a3e0ff8809d7cef2298d2e1316eddbe3e704150eb8dfe0d42bb22c358a552b3b5fe96a9ffbc661332e37f29e39077223493dcd
- SSDEEP
  
  24576:O5WHS04YNEMuExDiU6E5R9s8xY/2l/dRJ5dtsPxNGfH2NIbt+rV:O5Wd4auS+UjfU2T/5XD+NIbt+r
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2