16a964179a3d708afdf8f9d7357766eb7e7ccdb790e7d9981ab4d5ce68d3a334 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

16a964179a3d708afdf8f9d7357766eb7e7ccdb790e7d9981ab4d5ce68d3a334
Size

31KB
Sample

240422-xtjdmaeh55
MD5

7f8d47d581bd4be7e65c6380d37f8be3
SHA1

fc5784cba73c386fad4027759b0900c6cdc32240
SHA256

16a964179a3d708afdf8f9d7357766eb7e7ccdb790e7d9981ab4d5ce68d3a334
SHA512

024ee90ca38428c5f129225a8be84567ed29b96c6f2e7d5a2f24c3331cb67c66c28afacb54ef11cd71b6de907b369eaf53a07247d53514dc5ca042ee6e3da491
SSDEEP

384:tk2Wz6pL3a2a999999996cNyoYkytbdH4TIem29nm:K1z6pLxa999999996cgoYkytbdH4Uim

Score

7^/10

Malware Config

Targets

- Target
  
  16a964179a3d708afdf8f9d7357766eb7e7ccdb790e7d9981ab4d5ce68d3a334
- Size
  
  31KB
- MD5
  
  7f8d47d581bd4be7e65c6380d37f8be3
- SHA1
  
  fc5784cba73c386fad4027759b0900c6cdc32240
- SHA256
  
  16a964179a3d708afdf8f9d7357766eb7e7ccdb790e7d9981ab4d5ce68d3a334
- SHA512
  
  024ee90ca38428c5f129225a8be84567ed29b96c6f2e7d5a2f24c3331cb67c66c28afacb54ef11cd71b6de907b369eaf53a07247d53514dc5ca042ee6e3da491
- SSDEEP
  
  384:tk2Wz6pL3a2a999999996cNyoYkytbdH4TIem29nm:K1z6pLxa999999996cgoYkytbdH4Uim
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2