29dae596584e9e1508d146e4dca769d47e057fd9899d94d48a787aba723d20fd | Triage

Sharing

General

Target

29dae596584e9e1508d146e4dca769d47e057fd9899d94d48a787aba723d20fd
Size

18KB
Sample

240504-1jqlqsca8z
MD5

7c8d5773608de107a12931b16a2cb0e3
SHA1

738b289504b079d3c7a53316331aebda3184bd71
SHA256

29dae596584e9e1508d146e4dca769d47e057fd9899d94d48a787aba723d20fd
SHA512

365542393765e5f6a78fd7a4c7997eea9a4a74979bc96943adccfd97f630c70cdf833ab5985b7594c3d58c349d252586d552e4f74b1262e4746035df04630b32
SSDEEP

192:wymTSrQWRIcaKNK0Omoarr5enSbs370m1dPIa5nAtujunESgcp:wxTsQWRIcaKHfoQ5enusrjAzzg2

Score

7^/10

Malware Config

Targets

- Target
  
  29dae596584e9e1508d146e4dca769d47e057fd9899d94d48a787aba723d20fd
- Size
  
  18KB
- MD5
  
  7c8d5773608de107a12931b16a2cb0e3
- SHA1
  
  738b289504b079d3c7a53316331aebda3184bd71
- SHA256
  
  29dae596584e9e1508d146e4dca769d47e057fd9899d94d48a787aba723d20fd
- SHA512
  
  365542393765e5f6a78fd7a4c7997eea9a4a74979bc96943adccfd97f630c70cdf833ab5985b7594c3d58c349d252586d552e4f74b1262e4746035df04630b32
- SSDEEP
  
  192:wymTSrQWRIcaKNK0Omoarr5enSbs370m1dPIa5nAtujunESgcp:wxTsQWRIcaKHfoQ5enusrjAzzg2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2