efb7bbb511dba31dca8bf7ecdde91ca562206d6e6e8515b6338d874b165458a1 | Triage

Sharing

General

Target

efb7bbb511dba31dca8bf7ecdde91ca562206d6e6e8515b6338d874b165458a1
Size

22KB
Sample

240430-exqyrscf7y
MD5

80cbbd1857a5ce8634563440332ac520
SHA1

e5504bf378eab837460a1a7aacf1e35b113bc0f8
SHA256

efb7bbb511dba31dca8bf7ecdde91ca562206d6e6e8515b6338d874b165458a1
SHA512

0bfd33ab599258c96984547007f05f05c7571a0da425e5ca514485f1e8738a096d93e4733e9092b4145cbc609924437dfee07272e1091cbf21941a7c4e1d7b18
SSDEEP

384:yqdPNOCoP7/+6xr2wbSp2EA5PdR8uzeN+uiVWe1/h:1qCg66x2wbSp2EY6ueiVW0h

Score

7^/10

Malware Config

Targets

- Target
  
  efb7bbb511dba31dca8bf7ecdde91ca562206d6e6e8515b6338d874b165458a1
- Size
  
  22KB
- MD5
  
  80cbbd1857a5ce8634563440332ac520
- SHA1
  
  e5504bf378eab837460a1a7aacf1e35b113bc0f8
- SHA256
  
  efb7bbb511dba31dca8bf7ecdde91ca562206d6e6e8515b6338d874b165458a1
- SHA512
  
  0bfd33ab599258c96984547007f05f05c7571a0da425e5ca514485f1e8738a096d93e4733e9092b4145cbc609924437dfee07272e1091cbf21941a7c4e1d7b18
- SSDEEP
  
  384:yqdPNOCoP7/+6xr2wbSp2EA5PdR8uzeN+uiVWe1/h:1qCg66x2wbSp2EY6ueiVW0h
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2