b52a3907c0b468c0c0ee40fa81b66da3f2ef058eb983b009c17671c20181b0cd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b52a3907c0b468c0c0ee40fa81b66da3f2ef058eb983b009c17671c20181b0cd
Size

1021KB
Sample

240508-cfr4dscg6x
MD5

d9539c6f8dc50ec42b0376d5596fc2b4
SHA1

3c9d27b159df10d285f7020b3528ffc641d3bddf
SHA256

b52a3907c0b468c0c0ee40fa81b66da3f2ef058eb983b009c17671c20181b0cd
SHA512

e243d6956099354488ce4d58d836b7566551c2ffd057b7e4db1db7412bc5255ee6da6da1440b903c81bd1753050a8287553503bd0005e87085bd5ff3eb0c99a1
SSDEEP

24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAUi:IylFHUv6ReIt0jSrOZ

Score

7^/10

Malware Config

Targets

- Target
  
  b52a3907c0b468c0c0ee40fa81b66da3f2ef058eb983b009c17671c20181b0cd
- Size
  
  1021KB
- MD5
  
  d9539c6f8dc50ec42b0376d5596fc2b4
- SHA1
  
  3c9d27b159df10d285f7020b3528ffc641d3bddf
- SHA256
  
  b52a3907c0b468c0c0ee40fa81b66da3f2ef058eb983b009c17671c20181b0cd
- SHA512
  
  e243d6956099354488ce4d58d836b7566551c2ffd057b7e4db1db7412bc5255ee6da6da1440b903c81bd1753050a8287553503bd0005e87085bd5ff3eb0c99a1
- SSDEEP
  
  24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAUi:IylFHUv6ReIt0jSrOZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2