2a1f0c43ec19960af8d89ef0176715f1a3acb03b599bcc4e1e69165d3fea4652 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a1f0c43ec19960af8d89ef0176715f1a3acb03b599bcc4e1e69165d3fea4652
Size

36KB
Sample

240429-yk2dhsbb82
MD5

5493486f92b7ffafe44223091a4f7d78
SHA1

90f1c9294695e51c353b32dc20d21e0cf96cc5a2
SHA256

2a1f0c43ec19960af8d89ef0176715f1a3acb03b599bcc4e1e69165d3fea4652
SHA512

bd049129adf322be43be4efdea8137f42a04c3f27410821c2c0a15e88cd9c0d2e33172357e0d95dd9ae39366bf4f9adaaed5c339dcaf57185033fd55da888b48
SSDEEP

768:/YzEI7aYv6N3a5smptK5VX1/fAg8p/t/ctpiaC0Zz:jcaYvEa5Ltaneht/c7vCKz

Score

7^/10

Malware Config

Targets

- Target
  
  2a1f0c43ec19960af8d89ef0176715f1a3acb03b599bcc4e1e69165d3fea4652
- Size
  
  36KB
- MD5
  
  5493486f92b7ffafe44223091a4f7d78
- SHA1
  
  90f1c9294695e51c353b32dc20d21e0cf96cc5a2
- SHA256
  
  2a1f0c43ec19960af8d89ef0176715f1a3acb03b599bcc4e1e69165d3fea4652
- SHA512
  
  bd049129adf322be43be4efdea8137f42a04c3f27410821c2c0a15e88cd9c0d2e33172357e0d95dd9ae39366bf4f9adaaed5c339dcaf57185033fd55da888b48
- SSDEEP
  
  768:/YzEI7aYv6N3a5smptK5VX1/fAg8p/t/ctpiaC0Zz:jcaYvEa5Ltaneht/c7vCKz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2