e2ab8b11a1ae32eafb1d6c97f776bfe10400799be0c980b085470e4c254b1ed2 | Triage

Sharing

General

Target

e2ab8b11a1ae32eafb1d6c97f776bfe10400799be0c980b085470e4c254b1ed2
Size

40KB
Sample

240422-ev3vjsfd24
MD5

20a6ed9677634ab398d3affeb93d580b
SHA1

05b297227a8efe6ed8902e8799594f73bb144c77
SHA256

e2ab8b11a1ae32eafb1d6c97f776bfe10400799be0c980b085470e4c254b1ed2
SHA512

a3157b22a79ff5ff848d3aa227a56fda3d31a5ad50b6ae39ff3761a792083b7c5046d04dc7247c31f5cdde92be5eb8ff203876a8b8f4711e65f03da8816f4745
SSDEEP

768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVVht:BMH3lNMKkPzT8QsTt

Score

7^/10

Malware Config

Targets

- Target
  
  e2ab8b11a1ae32eafb1d6c97f776bfe10400799be0c980b085470e4c254b1ed2
- Size
  
  40KB
- MD5
  
  20a6ed9677634ab398d3affeb93d580b
- SHA1
  
  05b297227a8efe6ed8902e8799594f73bb144c77
- SHA256
  
  e2ab8b11a1ae32eafb1d6c97f776bfe10400799be0c980b085470e4c254b1ed2
- SHA512
  
  a3157b22a79ff5ff848d3aa227a56fda3d31a5ad50b6ae39ff3761a792083b7c5046d04dc7247c31f5cdde92be5eb8ff203876a8b8f4711e65f03da8816f4745
- SSDEEP
  
  768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVVht:BMH3lNMKkPzT8QsTt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2