042f15ee479206478959017213bb1ee88bc59e01c0260047a5dcc2672b8998cc | Triage

Sharing

General

Target

042f15ee479206478959017213bb1ee88bc59e01c0260047a5dcc2672b8998cc
Size

540KB
Sample

240504-w91r6shg46
MD5

ebab113d2f0d6a89df3ea93831a80d54
SHA1

d415dc4a7c1835981f744d04f163696b7b7883a0
SHA256

042f15ee479206478959017213bb1ee88bc59e01c0260047a5dcc2672b8998cc
SHA512

90ee375b38967adb86e8a7b2a949d9695b4b98bd03351f6870df1009ccf2c9567e4ca0e402facc68b82b2d13c15eb5dc67f2666ba32aeda130df87f7274d1c1a
SSDEEP

3072:wCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxE:wqDAwl0xPTMiR9JSSxPUKYGdodHN

Score

7^/10

Malware Config

Targets

- Target
  
  042f15ee479206478959017213bb1ee88bc59e01c0260047a5dcc2672b8998cc
- Size
  
  540KB
- MD5
  
  ebab113d2f0d6a89df3ea93831a80d54
- SHA1
  
  d415dc4a7c1835981f744d04f163696b7b7883a0
- SHA256
  
  042f15ee479206478959017213bb1ee88bc59e01c0260047a5dcc2672b8998cc
- SHA512
  
  90ee375b38967adb86e8a7b2a949d9695b4b98bd03351f6870df1009ccf2c9567e4ca0e402facc68b82b2d13c15eb5dc67f2666ba32aeda130df87f7274d1c1a
- SSDEEP
  
  3072:wCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxE:wqDAwl0xPTMiR9JSSxPUKYGdodHN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2