03dfe84451d8111a1e1c8de49b96db00313b8e8ab364cc6e563bc1de883679e7 | Triage

Sharing

General

Target

03dfe84451d8111a1e1c8de49b96db00313b8e8ab364cc6e563bc1de883679e7
Size

33KB
Sample

240615-ww4xnstfpm
MD5

6dbbb216f909600d94f5444688c87f1e
SHA1

f54ba76277ffe6a579c715af46d5c2244d0f9e68
SHA256

03dfe84451d8111a1e1c8de49b96db00313b8e8ab364cc6e563bc1de883679e7
SHA512

463ddfb405cf371ea491264250b5f0963bf00c36a1e44dc766024f0b9eb7bc95a7eea0a6d94dd073314214464369dc41aaadd358aa0eec24768b3eb98b767fb0
SSDEEP

384:MApc8m4e0GvQak4JI341C0abnk6hJP+B1g:MApQr0GvdFJI34qTk6hJP5

Score

7^/10

Malware Config

Targets

- Target
  
  03dfe84451d8111a1e1c8de49b96db00313b8e8ab364cc6e563bc1de883679e7
- Size
  
  33KB
- MD5
  
  6dbbb216f909600d94f5444688c87f1e
- SHA1
  
  f54ba76277ffe6a579c715af46d5c2244d0f9e68
- SHA256
  
  03dfe84451d8111a1e1c8de49b96db00313b8e8ab364cc6e563bc1de883679e7
- SHA512
  
  463ddfb405cf371ea491264250b5f0963bf00c36a1e44dc766024f0b9eb7bc95a7eea0a6d94dd073314214464369dc41aaadd358aa0eec24768b3eb98b767fb0
- SSDEEP
  
  384:MApc8m4e0GvQak4JI341C0abnk6hJP+B1g:MApQr0GvdFJI34qTk6hJP5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2