35b50af70cc3a67d7ff499348cf21451606c8a83e40dddef46c47ab6d4f9c31e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35b50af70cc3a67d7ff499348cf21451606c8a83e40dddef46c47ab6d4f9c31e
Size

83KB
Sample

240527-zrec1ahg8x
MD5

a0d1cdc98cb7998da9dd68348677ec67
SHA1

bdca31741123ea2de6d4bd0d4704033cf9278285
SHA256

35b50af70cc3a67d7ff499348cf21451606c8a83e40dddef46c47ab6d4f9c31e
SHA512

7696a0cf208bc4dfb100510617726ed1db1d2580a3e26c895e6b5afeb6b1e45cc838a96ee713fbc9cdb03f12a3e820704e85f328879a61f2aa372a6835890164
SSDEEP

1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zJ:IGjot7UQLtdgI2MyzNORQtOflIwoHNV2

Score

7^/10

Malware Config

Targets

- Target
  
  35b50af70cc3a67d7ff499348cf21451606c8a83e40dddef46c47ab6d4f9c31e
- Size
  
  83KB
- MD5
  
  a0d1cdc98cb7998da9dd68348677ec67
- SHA1
  
  bdca31741123ea2de6d4bd0d4704033cf9278285
- SHA256
  
  35b50af70cc3a67d7ff499348cf21451606c8a83e40dddef46c47ab6d4f9c31e
- SHA512
  
  7696a0cf208bc4dfb100510617726ed1db1d2580a3e26c895e6b5afeb6b1e45cc838a96ee713fbc9cdb03f12a3e820704e85f328879a61f2aa372a6835890164
- SSDEEP
  
  1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zJ:IGjot7UQLtdgI2MyzNORQtOflIwoHNV2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2