7bbdf12511d3b6f79fd50cb8f0326ecee8fa8854f46648a7afaba5def4f838f5 | Triage

Sharing

General

Target

7bbdf12511d3b6f79fd50cb8f0326ecee8fa8854f46648a7afaba5def4f838f5
Size

224KB
Sample

240501-3mg5wacf28
MD5

0e871c368ee53a865c065c32270c879e
SHA1

7c6924b2a2187d51435ccb801d6ad5216ba28a58
SHA256

7bbdf12511d3b6f79fd50cb8f0326ecee8fa8854f46648a7afaba5def4f838f5
SHA512

8b82b4ffed18ead62b77a3ec3b46239900007aceabbe977ee2c66b1dca3ace5a6cefde76c4956d28bd04eea6afc321891d67d98a354563ac1433321f5d6d33b0
SSDEEP

3072:GRkK13MZtRvhCjG8G3GbGVGBGfGuGxGWYcrf6Kad0:GRppMhAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  7bbdf12511d3b6f79fd50cb8f0326ecee8fa8854f46648a7afaba5def4f838f5
- Size
  
  224KB
- MD5
  
  0e871c368ee53a865c065c32270c879e
- SHA1
  
  7c6924b2a2187d51435ccb801d6ad5216ba28a58
- SHA256
  
  7bbdf12511d3b6f79fd50cb8f0326ecee8fa8854f46648a7afaba5def4f838f5
- SHA512
  
  8b82b4ffed18ead62b77a3ec3b46239900007aceabbe977ee2c66b1dca3ace5a6cefde76c4956d28bd04eea6afc321891d67d98a354563ac1433321f5d6d33b0
- SSDEEP
  
  3072:GRkK13MZtRvhCjG8G3GbGVGBGfGuGxGWYcrf6Kad0:GRppMhAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2