0360bc747ec6b913e1955f9f9d21bf5b3e6f9a651ef10197bebf21945df686bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0360bc747ec6b913e1955f9f9d21bf5b3e6f9a651ef10197bebf21945df686bd
Size

603KB
Sample

240428-wve7xsde44
MD5

df32c1992236d922fadee6fee042a0ce
SHA1

85156b97522f374462e7bb04036fe760dc0a6a2d
SHA256

0360bc747ec6b913e1955f9f9d21bf5b3e6f9a651ef10197bebf21945df686bd
SHA512

30ed89dba199bcd604f9f9cc8d190f37b1a64cd74a65f135169652ad63afe4deb244eb1454f14b8780ba21f2b656b4a8a5f399949921a57bf5213561cd8e51b3
SSDEEP

6144:FqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jkA:F+67XR9JSSxvYGdodH/1Cz

Score

7^/10

Malware Config

Targets

- Target
  
  0360bc747ec6b913e1955f9f9d21bf5b3e6f9a651ef10197bebf21945df686bd
- Size
  
  603KB
- MD5
  
  df32c1992236d922fadee6fee042a0ce
- SHA1
  
  85156b97522f374462e7bb04036fe760dc0a6a2d
- SHA256
  
  0360bc747ec6b913e1955f9f9d21bf5b3e6f9a651ef10197bebf21945df686bd
- SHA512
  
  30ed89dba199bcd604f9f9cc8d190f37b1a64cd74a65f135169652ad63afe4deb244eb1454f14b8780ba21f2b656b4a8a5f399949921a57bf5213561cd8e51b3
- SSDEEP
  
  6144:FqDAwl0xPTMiR9JSSxPUKYGdodH/baqE7Al8jkA:F+67XR9JSSxvYGdodH/1Cz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2