12f0f76abdf6223e604587f961c1aa9a5d423c38f2f807bc42b148861414c691 | Triage

Sharing

General

Target

SecuriteInfo.com.Trojan.DownLoad3.28161.23146.13969.exe
Size

6.6MB
Sample

240522-3g5nzsdb8z
MD5

64f3e14650cfa8ad34d2bf90cd41e082
SHA1

0d82a34f554342d30bea3fa21ebd7ec8e1fc395c
SHA256

12f0f76abdf6223e604587f961c1aa9a5d423c38f2f807bc42b148861414c691
SHA512

dd136047e2c33b42a72bffa39d280ab63f6b189368bc6b6ff8475731c517d644c6ccd4ae4a8f30c54ad28f9db69838b70c1a4a195dc0b66f47d09f2e0c692161
SSDEEP

98304:uCSa4v3dAm8U5ipZ1G7aLxZf1w51p6LDCv4olr4yWWsfTjyJmMoEKQpogf2D:ula4/N8BpmCDf251Xv4oNn6/yprp3S

Score

7^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Trojan.DownLoad3.28161.23146.13969.exe
- Size
  
  6.6MB
- MD5
  
  64f3e14650cfa8ad34d2bf90cd41e082
- SHA1
  
  0d82a34f554342d30bea3fa21ebd7ec8e1fc395c
- SHA256
  
  12f0f76abdf6223e604587f961c1aa9a5d423c38f2f807bc42b148861414c691
- SHA512
  
  dd136047e2c33b42a72bffa39d280ab63f6b189368bc6b6ff8475731c517d644c6ccd4ae4a8f30c54ad28f9db69838b70c1a4a195dc0b66f47d09f2e0c692161
- SSDEEP
  
  98304:uCSa4v3dAm8U5ipZ1G7aLxZf1w51p6LDCv4olr4yWWsfTjyJmMoEKQpogf2D:ula4/N8BpmCDf251Xv4oNn6/yprp3S
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2