813160e8517447f2aa8f7234e9c3ff6f947b488d2394f6a43e3f1681133f8ac4 | Triage

Sharing

General

Target

813160e8517447f2aa8f7234e9c3ff6f947b488d2394f6a43e3f1681133f8ac4
Size

43KB
Sample

240602-1pefnahc58
MD5

043347e0a64a51994f674a852f1f51ec
SHA1

b4a183562068af7a5c474f50751643e49acb7956
SHA256

813160e8517447f2aa8f7234e9c3ff6f947b488d2394f6a43e3f1681133f8ac4
SHA512

3acec1d9c4188d355dbfbb023e1b712f03f0c20b1458e9eb061d3b646370322fc0b3b3ee8032ddc501ecc33b436160916adc3707b41418504673334ba5e81463
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAydP:bCDOw9aMDooc+vAy9

Score

7^/10

Malware Config

Targets

- Target
  
  813160e8517447f2aa8f7234e9c3ff6f947b488d2394f6a43e3f1681133f8ac4
- Size
  
  43KB
- MD5
  
  043347e0a64a51994f674a852f1f51ec
- SHA1
  
  b4a183562068af7a5c474f50751643e49acb7956
- SHA256
  
  813160e8517447f2aa8f7234e9c3ff6f947b488d2394f6a43e3f1681133f8ac4
- SHA512
  
  3acec1d9c4188d355dbfbb023e1b712f03f0c20b1458e9eb061d3b646370322fc0b3b3ee8032ddc501ecc33b436160916adc3707b41418504673334ba5e81463
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAydP:bCDOw9aMDooc+vAy9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2