f854e8b0ce44ac5fec5383331cca45902a80517162e7625178bb07924f0d36e2 | Triage

Sharing

General

Target

f854e8b0ce44ac5fec5383331cca45902a80517162e7625178bb07924f0d36e2
Size

56KB
Sample

240512-gjxkhaeh83
MD5

28471c12bb898a4803cebeb572af0b38
SHA1

532d7ebcf5d6e03e88b1a6d3e408f53a93d31f58
SHA256

f854e8b0ce44ac5fec5383331cca45902a80517162e7625178bb07924f0d36e2
SHA512

44596419d8c9091dcb9b65f76ad39a71ab7a0c1b3512492b01eb8beb20aecdea5c6545394502e42fb908769c34f2cdc2156823e03fd541e1580585429264291c
SSDEEP

768:/mnVAp7lyHeUueqkpI8dBwNQnxxy+CVr/FC0uVexxhU98eaI:enVA9k+leqkpI8dBwCy+er/F5Hi9l

Score

7^/10

Malware Config

Targets

- Target
  
  f854e8b0ce44ac5fec5383331cca45902a80517162e7625178bb07924f0d36e2
- Size
  
  56KB
- MD5
  
  28471c12bb898a4803cebeb572af0b38
- SHA1
  
  532d7ebcf5d6e03e88b1a6d3e408f53a93d31f58
- SHA256
  
  f854e8b0ce44ac5fec5383331cca45902a80517162e7625178bb07924f0d36e2
- SHA512
  
  44596419d8c9091dcb9b65f76ad39a71ab7a0c1b3512492b01eb8beb20aecdea5c6545394502e42fb908769c34f2cdc2156823e03fd541e1580585429264291c
- SSDEEP
  
  768:/mnVAp7lyHeUueqkpI8dBwNQnxxy+CVr/FC0uVexxhU98eaI:enVA9k+leqkpI8dBwCy+er/F5Hi9l
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2