c04266de4c2c149da0719d87fe6a5d4e820a4b0c05d130292442b93f7d755c72 | Triage

Sharing

General

Target

c04266de4c2c149da0719d87fe6a5d4e820a4b0c05d130292442b93f7d755c72
Size

37KB
Sample

240424-zadedahb57
MD5

185319b3b283b358fd9cbab2a4ad7e03
SHA1

4aac15103dc26079f2bf464b62a1e0f02033797a
SHA256

c04266de4c2c149da0719d87fe6a5d4e820a4b0c05d130292442b93f7d755c72
SHA512

75451185c849e59df72407856e003f3f15cc824e80ce1f000ec433d67bab5c1d6433cfca73cfe52f293a4710a1e73063dae154ae313f61c0036f6eed8cec81c1
SSDEEP

768:pdA4TOKjHXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8tvCkA8SsBiaojlbAwif:nA4TljXRrs9sINeZEtejlIkoLN127BFX

Score

7^/10

Malware Config

Targets

- Target
  
  c04266de4c2c149da0719d87fe6a5d4e820a4b0c05d130292442b93f7d755c72
- Size
  
  37KB
- MD5
  
  185319b3b283b358fd9cbab2a4ad7e03
- SHA1
  
  4aac15103dc26079f2bf464b62a1e0f02033797a
- SHA256
  
  c04266de4c2c149da0719d87fe6a5d4e820a4b0c05d130292442b93f7d755c72
- SHA512
  
  75451185c849e59df72407856e003f3f15cc824e80ce1f000ec433d67bab5c1d6433cfca73cfe52f293a4710a1e73063dae154ae313f61c0036f6eed8cec81c1
- SSDEEP
  
  768:pdA4TOKjHXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8tvCkA8SsBiaojlbAwif:nA4TljXRrs9sINeZEtejlIkoLN127BFX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2