8ef5a2014dd38e551cb09ac0f387b5cb62723af061f1ef2dab51fdcd7a5f213c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ef5a2014dd38e551cb09ac0f387b5cb62723af061f1ef2dab51fdcd7a5f213c
Size

10.3MB
Sample

240528-xmxmnsgb3v
MD5

44c10e048dae17d4a9af3789ecd3304c
SHA1

43dda879e39e775d0871df044f99090310069692
SHA256

8ef5a2014dd38e551cb09ac0f387b5cb62723af061f1ef2dab51fdcd7a5f213c
SHA512

7e8b17ebb81df6203a9defe0b921371109cb7c10b0e9176796dfcbaa7c75ce00ecbc6e1a098b7da1bb7d10fb775d983837a4654bdfdc5ec16283443bd18fa0e7
SSDEEP

196608:67M8xm8lYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOW7V:AM8xm8lD4F3e+biSDcQwM8uDuz

Score

7^/10

Malware Config

Targets

- Target
  
  8ef5a2014dd38e551cb09ac0f387b5cb62723af061f1ef2dab51fdcd7a5f213c
- Size
  
  10.3MB
- MD5
  
  44c10e048dae17d4a9af3789ecd3304c
- SHA1
  
  43dda879e39e775d0871df044f99090310069692
- SHA256
  
  8ef5a2014dd38e551cb09ac0f387b5cb62723af061f1ef2dab51fdcd7a5f213c
- SHA512
  
  7e8b17ebb81df6203a9defe0b921371109cb7c10b0e9176796dfcbaa7c75ce00ecbc6e1a098b7da1bb7d10fb775d983837a4654bdfdc5ec16283443bd18fa0e7
- SSDEEP
  
  196608:67M8xm8lYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOW7V:AM8xm8lD4F3e+biSDcQwM8uDuz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2