6b24213a39f2dff0f5cf0548a9007194260e229bfaaf56c1ef79a383b7a92a98 | Triage

Sharing

General

Target

6b24213a39f2dff0f5cf0548a9007194260e229bfaaf56c1ef79a383b7a92a98
Size

33KB
Sample

240531-2twfeahc57
MD5

03d112ff57e93c4122c9e6d5557cab90
SHA1

3342db75ec5dd9a62da4efd510ff5b47e63bca9e
SHA256

6b24213a39f2dff0f5cf0548a9007194260e229bfaaf56c1ef79a383b7a92a98
SHA512

5140d537659f65fdd9ac5d25d04a8dc1ad8796f76d3292a8c1041707f9519626b22db27208775ba2acf459bc7fc2bcb0d2fc2ab9dfa7325d5e542c6c44f0709b
SSDEEP

384:MApc8m4e0LvQak4JI341CNabnkIU0SqwunabV/5wN:MApQr0LvdFJI34nTkIU0ZnCg

Score

7^/10

Malware Config

Targets

- Target
  
  6b24213a39f2dff0f5cf0548a9007194260e229bfaaf56c1ef79a383b7a92a98
- Size
  
  33KB
- MD5
  
  03d112ff57e93c4122c9e6d5557cab90
- SHA1
  
  3342db75ec5dd9a62da4efd510ff5b47e63bca9e
- SHA256
  
  6b24213a39f2dff0f5cf0548a9007194260e229bfaaf56c1ef79a383b7a92a98
- SHA512
  
  5140d537659f65fdd9ac5d25d04a8dc1ad8796f76d3292a8c1041707f9519626b22db27208775ba2acf459bc7fc2bcb0d2fc2ab9dfa7325d5e542c6c44f0709b
- SSDEEP
  
  384:MApc8m4e0LvQak4JI341CNabnkIU0SqwunabV/5wN:MApQr0LvdFJI34nTkIU0ZnCg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2