108ee4b0eb3ffb39e02d24fc4873aaede7ff1d4ce5129a0fe084d197d908c0cb | Triage

Sharing

General

Target

108ee4b0eb3ffb39e02d24fc4873aaede7ff1d4ce5129a0fe084d197d908c0cb
Size

440KB
Sample

240424-xjzymafd2s
MD5

e94fd6454b2aaf61cee1e498de90e310
SHA1

de5c81a27c6dc44042bdbfe13d6b881995211059
SHA256

108ee4b0eb3ffb39e02d24fc4873aaede7ff1d4ce5129a0fe084d197d908c0cb
SHA512

202ac2437f811c0e02ee61aedeb05387eeaf0ce416ba0f8a91a419f0d42480722727b6a6147800b1d87c2051c268a85b14063a57a8c2a1884c4749a4ce58b7a5
SSDEEP

12288:LA+AUTpldpbKSb8l52QyvjY8c+A+AUTpldpbKSb8l52QyvjY8cc:LA+AUTpldpbba5kvc8dA+AUTpldpbbay

Score

7^/10

Malware Config

Targets

- Target
  
  108ee4b0eb3ffb39e02d24fc4873aaede7ff1d4ce5129a0fe084d197d908c0cb
- Size
  
  440KB
- MD5
  
  e94fd6454b2aaf61cee1e498de90e310
- SHA1
  
  de5c81a27c6dc44042bdbfe13d6b881995211059
- SHA256
  
  108ee4b0eb3ffb39e02d24fc4873aaede7ff1d4ce5129a0fe084d197d908c0cb
- SHA512
  
  202ac2437f811c0e02ee61aedeb05387eeaf0ce416ba0f8a91a419f0d42480722727b6a6147800b1d87c2051c268a85b14063a57a8c2a1884c4749a4ce58b7a5
- SSDEEP
  
  12288:LA+AUTpldpbKSb8l52QyvjY8c+A+AUTpldpbKSb8l52QyvjY8cc:LA+AUTpldpbba5kvc8dA+AUTpldpbbay
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2