32f2f70e7ec0ed503b337bd98d01ea0e6fc9a23abc39ee299882302c7d17e23a | Triage

Sharing

General

Target

32f2f70e7ec0ed503b337bd98d01ea0e6fc9a23abc39ee299882302c7d17e23a
Size

49KB
Sample

240608-z3s1jahb43
MD5

1ae262f216bd162284a96ee5d0fae5b2
SHA1

86d58241feb5f218be8c590f1a71e648ace741d2
SHA256

32f2f70e7ec0ed503b337bd98d01ea0e6fc9a23abc39ee299882302c7d17e23a
SHA512

0f2a375d55356ee7bdd2ac8414dfacd1b21479652e1017df7a8b9e52e6c8d7bb6922a2985ffa6de95d160871fb5c150da52d7c1c456b5fb9196b5270c32cf508
SSDEEP

768:aHcisZ7uyQZBDM8SPxw0fQ0qjKl7U49AHuiJPJVY:aHctJupci0fTVB2dBVY

Score

7^/10

Malware Config

Targets

- Target
  
  32f2f70e7ec0ed503b337bd98d01ea0e6fc9a23abc39ee299882302c7d17e23a
- Size
  
  49KB
- MD5
  
  1ae262f216bd162284a96ee5d0fae5b2
- SHA1
  
  86d58241feb5f218be8c590f1a71e648ace741d2
- SHA256
  
  32f2f70e7ec0ed503b337bd98d01ea0e6fc9a23abc39ee299882302c7d17e23a
- SHA512
  
  0f2a375d55356ee7bdd2ac8414dfacd1b21479652e1017df7a8b9e52e6c8d7bb6922a2985ffa6de95d160871fb5c150da52d7c1c456b5fb9196b5270c32cf508
- SSDEEP
  
  768:aHcisZ7uyQZBDM8SPxw0fQ0qjKl7U49AHuiJPJVY:aHctJupci0fTVB2dBVY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2