d26ec968215a37f2ad86ce0b017c14abf3c41ff39b170d64bf87ea2eb519242f | Triage

Sharing

General

Target

d26ec968215a37f2ad86ce0b017c14abf3c41ff39b170d64bf87ea2eb519242f
Size

48KB
Sample

240603-q2g27sgd6y
MD5

5ce7e90e2e3ab4f3f5c72846c584ac32
SHA1

56be2ad6b3b70e2d31c43f457d9092598a056b28
SHA256

d26ec968215a37f2ad86ce0b017c14abf3c41ff39b170d64bf87ea2eb519242f
SHA512

1377a4479ced8b239d7d877e1de6bf63f211fbfb7051e9587d28ac67ce31f0dc57e6860b6c589578b984c0ec0909d49b80944c854030ace31eb418c73bf05e31
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatshF:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7c

Score

7^/10

Malware Config

Targets

- Target
  
  d26ec968215a37f2ad86ce0b017c14abf3c41ff39b170d64bf87ea2eb519242f
- Size
  
  48KB
- MD5
  
  5ce7e90e2e3ab4f3f5c72846c584ac32
- SHA1
  
  56be2ad6b3b70e2d31c43f457d9092598a056b28
- SHA256
  
  d26ec968215a37f2ad86ce0b017c14abf3c41ff39b170d64bf87ea2eb519242f
- SHA512
  
  1377a4479ced8b239d7d877e1de6bf63f211fbfb7051e9587d28ac67ce31f0dc57e6860b6c589578b984c0ec0909d49b80944c854030ace31eb418c73bf05e31
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatshF:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7c
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2