41bbdd824f01bd36bdfe0f29aecf5a3dcd88a4a20fa7fa67e40041584d0172af | Triage

Sharing

General

Target

41bbdd824f01bd36bdfe0f29aecf5a3dcd88a4a20fa7fa67e40041584d0172af
Size

8.7MB
Sample

240418-zx5gdaeh49
MD5

c02240bd0f4a7bbf370c5309db1f2a7b
SHA1

9d3496ee9631396fb25f3ed2467789addac48bba
SHA256

41bbdd824f01bd36bdfe0f29aecf5a3dcd88a4a20fa7fa67e40041584d0172af
SHA512

f7bf33971e4ae4aaf9b276f2956ed9ee21f9d04fffcbfef24028d266e63b6dc32bce152f84c14d3031d67689cda0fd9d8a95766c9e37f241b8be3651e510829b
SSDEEP

196608:760lDgEyVpJ7NCbzceWSr+996LqOGMVbzz9oFAas49oELlRhWj:O0mENQ/996WTMVfxsn+EM

Score

7^/10

Malware Config

Targets

- Target
  
  41bbdd824f01bd36bdfe0f29aecf5a3dcd88a4a20fa7fa67e40041584d0172af
- Size
  
  8.7MB
- MD5
  
  c02240bd0f4a7bbf370c5309db1f2a7b
- SHA1
  
  9d3496ee9631396fb25f3ed2467789addac48bba
- SHA256
  
  41bbdd824f01bd36bdfe0f29aecf5a3dcd88a4a20fa7fa67e40041584d0172af
- SHA512
  
  f7bf33971e4ae4aaf9b276f2956ed9ee21f9d04fffcbfef24028d266e63b6dc32bce152f84c14d3031d67689cda0fd9d8a95766c9e37f241b8be3651e510829b
- SSDEEP
  
  196608:760lDgEyVpJ7NCbzceWSr+996LqOGMVbzz9oFAas49oELlRhWj:O0mENQ/996WTMVfxsn+EM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2