725f22d2a19a06a70f8704791ce594cd39e2e292c6e2a78cdf194f2629ed8be9 | Triage

Sharing

General

Target

725f22d2a19a06a70f8704791ce594cd39e2e292c6e2a78cdf194f2629ed8be9
Size

32KB
Sample

240610-3dy22avdmb
MD5

cfaf567efd07d28488df0114ad873bde
SHA1

fefd2f2470e6754ba7e4b24b3ebbde4db647bf9a
SHA256

725f22d2a19a06a70f8704791ce594cd39e2e292c6e2a78cdf194f2629ed8be9
SHA512

ed95d967330463a66c5d92885973a4d6c1c12d47ef3f774e05a6b109f673f9e253e3ed3b51d1043bbd573e72e556e56d8476dfb7afc0ccb79ce2365d2856ea7e
SSDEEP

384:MApc8m4e0GvQak4JI341C0abnk6hJPEz6+:MApQr0GvdFJI34qTk6hJPEzN

Score

7^/10

Malware Config

Targets

- Target
  
  725f22d2a19a06a70f8704791ce594cd39e2e292c6e2a78cdf194f2629ed8be9
- Size
  
  32KB
- MD5
  
  cfaf567efd07d28488df0114ad873bde
- SHA1
  
  fefd2f2470e6754ba7e4b24b3ebbde4db647bf9a
- SHA256
  
  725f22d2a19a06a70f8704791ce594cd39e2e292c6e2a78cdf194f2629ed8be9
- SHA512
  
  ed95d967330463a66c5d92885973a4d6c1c12d47ef3f774e05a6b109f673f9e253e3ed3b51d1043bbd573e72e556e56d8476dfb7afc0ccb79ce2365d2856ea7e
- SSDEEP
  
  384:MApc8m4e0GvQak4JI341C0abnk6hJPEz6+:MApQr0GvdFJI34qTk6hJPEzN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2