1c0130a25ef35648b515bf14f3fc16a5628d2d98f7916d7e47e301a461ad31b4 | Triage

Sharing

General

Target

1c0130a25ef35648b515bf14f3fc16a5628d2d98f7916d7e47e301a461ad31b4.exe
Size

83KB
Sample

240522-ewjs3abg59
MD5

05f8e7f4619835138b4cc07c8c2cff30
SHA1

dacefd8ebb6708aa4871a63ce3f4d2ff4d754572
SHA256

1c0130a25ef35648b515bf14f3fc16a5628d2d98f7916d7e47e301a461ad31b4
SHA512

f59a6d285582c743dad0c4c43508615494d73e2b1ae4a926d744eca59aa27640ef5a924f5245768c5d49714897123d7771b51781b566cd07747febfac503eeb4
SSDEEP

1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLJFC:sB+F8tfPN4yCDKDjvQQQtV

Score

7^/10

Malware Config

Targets

- Target
  
  1c0130a25ef35648b515bf14f3fc16a5628d2d98f7916d7e47e301a461ad31b4.exe
- Size
  
  83KB
- MD5
  
  05f8e7f4619835138b4cc07c8c2cff30
- SHA1
  
  dacefd8ebb6708aa4871a63ce3f4d2ff4d754572
- SHA256
  
  1c0130a25ef35648b515bf14f3fc16a5628d2d98f7916d7e47e301a461ad31b4
- SHA512
  
  f59a6d285582c743dad0c4c43508615494d73e2b1ae4a926d744eca59aa27640ef5a924f5245768c5d49714897123d7771b51781b566cd07747febfac503eeb4
- SSDEEP
  
  1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLJFC:sB+F8tfPN4yCDKDjvQQQtV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2