50d6da6af7483f90f09c31f32e8f2e6248d91530fccb5aa75bec4968b7cf1dd1 | Triage

Sharing

General

Target

50d6da6af7483f90f09c31f32e8f2e6248d91530fccb5aa75bec4968b7cf1dd1
Size

30KB
Sample

240516-152acsbb2s
MD5

4e1faa10be0ca9a80135c124b59a4ba2
SHA1

4d35a0234b137d36fcd7347c7c1f37aea035397c
SHA256

50d6da6af7483f90f09c31f32e8f2e6248d91530fccb5aa75bec4968b7cf1dd1
SHA512

ace7437cdb8e03d0aa2d77afa8b6be8f03af8f81957467f8e2ae8c9b05bd22ed8c9d53ac4098b8a102865416ca38df87c80d7d554849dedb5fe04247513cc1e0
SSDEEP

384:XQoEmqWUIn+MUwjvehBT6A64FMLmty7lnajojGCZDSH/J:XQEqsn+nwjWbOA6YMLLlnoKGCZOfJ

Score

7^/10

Malware Config

Targets

- Target
  
  50d6da6af7483f90f09c31f32e8f2e6248d91530fccb5aa75bec4968b7cf1dd1
- Size
  
  30KB
- MD5
  
  4e1faa10be0ca9a80135c124b59a4ba2
- SHA1
  
  4d35a0234b137d36fcd7347c7c1f37aea035397c
- SHA256
  
  50d6da6af7483f90f09c31f32e8f2e6248d91530fccb5aa75bec4968b7cf1dd1
- SHA512
  
  ace7437cdb8e03d0aa2d77afa8b6be8f03af8f81957467f8e2ae8c9b05bd22ed8c9d53ac4098b8a102865416ca38df87c80d7d554849dedb5fe04247513cc1e0
- SSDEEP
  
  384:XQoEmqWUIn+MUwjvehBT6A64FMLmty7lnajojGCZDSH/J:XQEqsn+nwjWbOA6YMLLlnoKGCZOfJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2