b8155875b74726ea01749d96603def4de50255368e9988168ff54cda95e6ce45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8155875b74726ea01749d96603def4de50255368e9988168ff54cda95e6ce45
Size

54KB
Sample

240505-d4fwpsdf3x
MD5

6f29b258474549aa8209af41d3b2ad0a
SHA1

52a271d3162943596f8ef32eabea280333c1a2df
SHA256

b8155875b74726ea01749d96603def4de50255368e9988168ff54cda95e6ce45
SHA512

20c066d27f6c5bbb11faf6eedab3a2fe15c2192fbf785f87c6acbb592db014742965a3098b255bad5f41ed1733705ced76e8bd1f62a20746fae1bd23a0a472e9
SSDEEP

768:MApQr0ovdFJI34eGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7yW:MAaDJlMsh7pWezEPJB+Ox

Score

7^/10

Malware Config

Targets

- Target
  
  b8155875b74726ea01749d96603def4de50255368e9988168ff54cda95e6ce45
- Size
  
  54KB
- MD5
  
  6f29b258474549aa8209af41d3b2ad0a
- SHA1
  
  52a271d3162943596f8ef32eabea280333c1a2df
- SHA256
  
  b8155875b74726ea01749d96603def4de50255368e9988168ff54cda95e6ce45
- SHA512
  
  20c066d27f6c5bbb11faf6eedab3a2fe15c2192fbf785f87c6acbb592db014742965a3098b255bad5f41ed1733705ced76e8bd1f62a20746fae1bd23a0a472e9
- SSDEEP
  
  768:MApQr0ovdFJI34eGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7yW:MAaDJlMsh7pWezEPJB+Ox
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2