da4122f7b9da0c5e0a726231166a6665bd9b5cc97c81c09c06bcb6a301e52b44 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da4122f7b9da0c5e0a726231166a6665bd9b5cc97c81c09c06bcb6a301e52b44
Size

523KB
Sample

240522-ka7wnahe91
MD5

55e9d7152e46ef9ebe50d521e7fcc4ff
SHA1

63a8c1e0457f66878c65accc6b3c77b006ecd63d
SHA256

da4122f7b9da0c5e0a726231166a6665bd9b5cc97c81c09c06bcb6a301e52b44
SHA512

b153538bac1e00784a8f9a4bd77c1d35e1827f8ec3a44ea20a9470f975fd84a88a210550a73a457978e4f70eca629e43823594d3cce0ea3469c217181d70f625
SSDEEP

3072:dCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxx:dqDAwl0xPTMiR9JSSxPUKYGdodH6

Score

7^/10

Malware Config

Targets

- Target
  
  da4122f7b9da0c5e0a726231166a6665bd9b5cc97c81c09c06bcb6a301e52b44
- Size
  
  523KB
- MD5
  
  55e9d7152e46ef9ebe50d521e7fcc4ff
- SHA1
  
  63a8c1e0457f66878c65accc6b3c77b006ecd63d
- SHA256
  
  da4122f7b9da0c5e0a726231166a6665bd9b5cc97c81c09c06bcb6a301e52b44
- SHA512
  
  b153538bac1e00784a8f9a4bd77c1d35e1827f8ec3a44ea20a9470f975fd84a88a210550a73a457978e4f70eca629e43823594d3cce0ea3469c217181d70f625
- SSDEEP
  
  3072:dCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxx:dqDAwl0xPTMiR9JSSxPUKYGdodH6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2