5edfc3102ccbc18ee2e0b831d87dbf6089c2dbad3593ad1912762246ccb2af3c | Triage

Sharing

General

Target

5edfc3102ccbc18ee2e0b831d87dbf6089c2dbad3593ad1912762246ccb2af3c
Size

531KB
Sample

240516-23l84adc2v
MD5

5954f1a67f49b7614003e8754653555f
SHA1

84f16eeb3ec82119ff6551a6017b7628c3376a0d
SHA256

5edfc3102ccbc18ee2e0b831d87dbf6089c2dbad3593ad1912762246ccb2af3c
SHA512

aa6e8462909e00cb43080e6aa721a13ff7f05dd4a2172c850ccbc4d40e7108ba043b0fde3250009e0f3c7622a2d539b036eb97f2c70a6950ff6bf95b245e9f03
SSDEEP

3072:4Cao5s1x1Pkl0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxP:4qal8l0xPTMiR9JSSxPUKYGdodHq

Score

7^/10

Malware Config

Targets

- Target
  
  5edfc3102ccbc18ee2e0b831d87dbf6089c2dbad3593ad1912762246ccb2af3c
- Size
  
  531KB
- MD5
  
  5954f1a67f49b7614003e8754653555f
- SHA1
  
  84f16eeb3ec82119ff6551a6017b7628c3376a0d
- SHA256
  
  5edfc3102ccbc18ee2e0b831d87dbf6089c2dbad3593ad1912762246ccb2af3c
- SHA512
  
  aa6e8462909e00cb43080e6aa721a13ff7f05dd4a2172c850ccbc4d40e7108ba043b0fde3250009e0f3c7622a2d539b036eb97f2c70a6950ff6bf95b245e9f03
- SSDEEP
  
  3072:4Cao5s1x1Pkl0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxP:4qal8l0xPTMiR9JSSxPUKYGdodHq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2