b54470eabf6889f37f72314cce01b275b9b20c8946dc9a74556969150cde954b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b54470eabf6889f37f72314cce01b275b9b20c8946dc9a74556969150cde954b
Size

413KB
Sample

240508-cfxzmscg7w
MD5

1b9b4095ef88bcb3e1dba7c69be3ae41
SHA1

7f67f1b2ab5426002b7a20a548408b733ca28280
SHA256

b54470eabf6889f37f72314cce01b275b9b20c8946dc9a74556969150cde954b
SHA512

ce2897cccd0dec622e0b0d53aa21f8ac8423b8271494e8b8f9457144495069c331747450ba8c1eb5e98145a7696f614dbfb5572483e95778458e28e9fd99cced
SSDEEP

12288:nVkojZTBv9LKMiKpAcY4fo6YvSOVKDPeV:WeT/LhtptY4AqOt

Score

7^/10

Malware Config

Targets

- Target
  
  b54470eabf6889f37f72314cce01b275b9b20c8946dc9a74556969150cde954b
- Size
  
  413KB
- MD5
  
  1b9b4095ef88bcb3e1dba7c69be3ae41
- SHA1
  
  7f67f1b2ab5426002b7a20a548408b733ca28280
- SHA256
  
  b54470eabf6889f37f72314cce01b275b9b20c8946dc9a74556969150cde954b
- SHA512
  
  ce2897cccd0dec622e0b0d53aa21f8ac8423b8271494e8b8f9457144495069c331747450ba8c1eb5e98145a7696f614dbfb5572483e95778458e28e9fd99cced
- SSDEEP
  
  12288:nVkojZTBv9LKMiKpAcY4fo6YvSOVKDPeV:WeT/LhtptY4AqOt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2