5a50ed9b6aaf1f2c55c87ba5d5ffbe50fbe47673d81fae310f83d368369a266b | Triage

Sharing

General

Target

5a50ed9b6aaf1f2c55c87ba5d5ffbe50fbe47673d81fae310f83d368369a266b
Size

5.4MB
Sample

240602-pqf54add38
MD5

276ff8f2ca265a73ce50a7656277872f
SHA1

672eb860aababba27487633b310d1ed29e8fd556
SHA256

5a50ed9b6aaf1f2c55c87ba5d5ffbe50fbe47673d81fae310f83d368369a266b
SHA512

763fcc510cda97a5e9fa261f7be78cd178a0025331cb68b6c391aeed97a23fd75c4de2361c4d43f55d78b3981d4db5c92ec36b5a3ee58fd0bf390d940630c78f
SSDEEP

98304:lzvKt3JfUUlSWa96JVvBg4nY9JYC8Z4ZA6kewCDjJsVHmIYoO/KMp9nXQ3gRtx:p8fUUlSctG4nYjYeANewCDjJZJ/KMpKI

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5a50ed9b6aaf1f2c55c87ba5d5ffbe50fbe47673d81fae310f83d368369a266b
- Size
  
  5.4MB
- MD5
  
  276ff8f2ca265a73ce50a7656277872f
- SHA1
  
  672eb860aababba27487633b310d1ed29e8fd556
- SHA256
  
  5a50ed9b6aaf1f2c55c87ba5d5ffbe50fbe47673d81fae310f83d368369a266b
- SHA512
  
  763fcc510cda97a5e9fa261f7be78cd178a0025331cb68b6c391aeed97a23fd75c4de2361c4d43f55d78b3981d4db5c92ec36b5a3ee58fd0bf390d940630c78f
- SSDEEP
  
  98304:lzvKt3JfUUlSWa96JVvBg4nY9JYC8Z4ZA6kewCDjJsVHmIYoO/KMp9nXQ3gRtx:p8fUUlSctG4nYjYeANewCDjJZJ/KMpKI
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2