f46e996293c9ed1d6dabbb1ab7ce76471d826532db797b2c99d083f58a9087f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f46e996293c9ed1d6dabbb1ab7ce76471d826532db797b2c99d083f58a9087f1
Size

5KB
Sample

240526-fegg2sgb77
MD5

494ec0bf0df0286ecb7804d9a43ee49b
SHA1

fa61b9821d4f7e85e3e1dd4f777247f9e8212ceb
SHA256

f46e996293c9ed1d6dabbb1ab7ce76471d826532db797b2c99d083f58a9087f1
SHA512

e8f15c688c208e7e8771366715b31c90a00c0ecfbf2f5698a259e70acd6e5ef4b333ada651c77572017d593c62a97b4e6297c33b894e22bcd718b162a90631e3
SSDEEP

48:qvECf6Am8RB/G965hkZNnZ1rsHB/VnC/RAxUl2CS70ALNx5vf:nCTxLSNnZuHnnwR2Ul2ClAhxZ

Score

7^/10

Malware Config

Targets

- Target
  
  f46e996293c9ed1d6dabbb1ab7ce76471d826532db797b2c99d083f58a9087f1
- Size
  
  5KB
- MD5
  
  494ec0bf0df0286ecb7804d9a43ee49b
- SHA1
  
  fa61b9821d4f7e85e3e1dd4f777247f9e8212ceb
- SHA256
  
  f46e996293c9ed1d6dabbb1ab7ce76471d826532db797b2c99d083f58a9087f1
- SHA512
  
  e8f15c688c208e7e8771366715b31c90a00c0ecfbf2f5698a259e70acd6e5ef4b333ada651c77572017d593c62a97b4e6297c33b894e22bcd718b162a90631e3
- SSDEEP
  
  48:qvECf6Am8RB/G965hkZNnZ1rsHB/VnC/RAxUl2CS70ALNx5vf:nCTxLSNnZuHnnwR2Ul2ClAhxZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2