2659ad8ae32c825b1388dc9e844dc522f9dce302fa3cff87b9b00eb89f8251c4 | Triage

Sharing

General

Target

2659ad8ae32c825b1388dc9e844dc522f9dce302fa3cff87b9b00eb89f8251c4
Size

41KB
Sample

240428-x7vc2sfe6v
MD5

c9db7ceb9d3c265d61c0b639319a5275
SHA1

219fb5a73628c8627c0bb421cdffd8c5532d89d8
SHA256

2659ad8ae32c825b1388dc9e844dc522f9dce302fa3cff87b9b00eb89f8251c4
SHA512

c9ca202cad04e263c8ed0bac05007e3bb46e4f753491fd256ac0a44772cd7b30e880ddc7d9727cabcb4ff912bd2c43e16b0aa32406e0c57989518dc073c3417c
SSDEEP

768:DaP8mckxIrafCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cN5Ze6/OVgX5hq:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNVV

Score

7^/10

Malware Config

Targets

- Target
  
  2659ad8ae32c825b1388dc9e844dc522f9dce302fa3cff87b9b00eb89f8251c4
- Size
  
  41KB
- MD5
  
  c9db7ceb9d3c265d61c0b639319a5275
- SHA1
  
  219fb5a73628c8627c0bb421cdffd8c5532d89d8
- SHA256
  
  2659ad8ae32c825b1388dc9e844dc522f9dce302fa3cff87b9b00eb89f8251c4
- SHA512
  
  c9ca202cad04e263c8ed0bac05007e3bb46e4f753491fd256ac0a44772cd7b30e880ddc7d9727cabcb4ff912bd2c43e16b0aa32406e0c57989518dc073c3417c
- SSDEEP
  
  768:DaP8mckxIrafCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cN5Ze6/OVgX5hq:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNVV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2