1f1356e47db8750bc25e351595545081d60d5d7bc4e4e9512886db00b3503de5 | Triage

Sharing

General

Target

1f1356e47db8750bc25e351595545081d60d5d7bc4e4e9512886db00b3503de5
Size

1.2MB
Sample

240515-ymlqvaha4z
MD5

2a2a64a439b88a7e6ebeb1363e3e7b5a
SHA1

23cbaaae2056d0cd813ca6087f5533ee3e1256b5
SHA256

1f1356e47db8750bc25e351595545081d60d5d7bc4e4e9512886db00b3503de5
SHA512

20a0482f5367c21d4c4bad3cbedf855ed7ae4e2f6b8fadbe695287ba27494eb9c2ba2c50be0f08c9b955ec444f93ac7f9970d200ffefb80c1b537de5a5a45765
SSDEEP

24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAA:IylFHUv6ReIt0jSrOq

Score

7^/10

Malware Config

Targets

- Target
  
  1f1356e47db8750bc25e351595545081d60d5d7bc4e4e9512886db00b3503de5
- Size
  
  1.2MB
- MD5
  
  2a2a64a439b88a7e6ebeb1363e3e7b5a
- SHA1
  
  23cbaaae2056d0cd813ca6087f5533ee3e1256b5
- SHA256
  
  1f1356e47db8750bc25e351595545081d60d5d7bc4e4e9512886db00b3503de5
- SHA512
  
  20a0482f5367c21d4c4bad3cbedf855ed7ae4e2f6b8fadbe695287ba27494eb9c2ba2c50be0f08c9b955ec444f93ac7f9970d200ffefb80c1b537de5a5a45765
- SSDEEP
  
  24576:1qylFH50Dv6RwyeQvt6ot0h9HyrOgiruAA:IylFHUv6ReIt0jSrOq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2