d5647dd8dbd73ac01bad18aefafab4b7848861c12eaff129b37f65cfc940575d | Triage

Sharing

General

Target

d5647dd8dbd73ac01bad18aefafab4b7848861c12eaff129b37f65cfc940575d.hta
Size

173B
Sample

240609-b8s1qabg8x
MD5

81d631fdb7e6f1d8b2222355bdea0d92
SHA1

fc5a81c0b9df522b041caf2557f152514ccfcd5c
SHA256

d5647dd8dbd73ac01bad18aefafab4b7848861c12eaff129b37f65cfc940575d
SHA512

1baab86587eeef814752265b1d340e41f0063b19621e184cdc2a8fb7b7471587b35f00cace53e24ebd1d2bbb287836cd24eb6fa04863332e486a5dce3d1023ec

Score

8^/10

Malware Config

Targets

- Target
  
  d5647dd8dbd73ac01bad18aefafab4b7848861c12eaff129b37f65cfc940575d.hta
- Size
  
  173B
- MD5
  
  81d631fdb7e6f1d8b2222355bdea0d92
- SHA1
  
  fc5a81c0b9df522b041caf2557f152514ccfcd5c
- SHA256
  
  d5647dd8dbd73ac01bad18aefafab4b7848861c12eaff129b37f65cfc940575d
- SHA512
  
  1baab86587eeef814752265b1d340e41f0063b19621e184cdc2a8fb7b7471587b35f00cace53e24ebd1d2bbb287836cd24eb6fa04863332e486a5dce3d1023ec
Score

8^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2