7aec72fd6370fe31f75bf5861a6dd7d7fae51051ce3c1467f3f3dcf962913236 | Triage

Sharing

General

Target

17a1da8ef63acc25806108a32b61b8c0.bin
Size

313KB
Sample

240629-bln39axcrg
MD5

17a1da8ef63acc25806108a32b61b8c0
SHA1

c8f9f4f18d74d074114bd2a708338632a366eed3
SHA256

7aec72fd6370fe31f75bf5861a6dd7d7fae51051ce3c1467f3f3dcf962913236
SHA512

a2fd8d4180a15db61e2a3c809c1c54b96cd4f87af296995cf4a15263c597621e0fdd0050185cbab406cc83cd70083b2eb0f652bf4961fac0665783630075d640
SSDEEP

6144:8KurIbStgrXR6JqJCAL4WsXz11PDhTAXBg:8JrIbd49z6Bg

Score

7^/10

Malware Config

Targets

- Target
  
  17a1da8ef63acc25806108a32b61b8c0.bin
- Size
  
  313KB
- MD5
  
  17a1da8ef63acc25806108a32b61b8c0
- SHA1
  
  c8f9f4f18d74d074114bd2a708338632a366eed3
- SHA256
  
  7aec72fd6370fe31f75bf5861a6dd7d7fae51051ce3c1467f3f3dcf962913236
- SHA512
  
  a2fd8d4180a15db61e2a3c809c1c54b96cd4f87af296995cf4a15263c597621e0fdd0050185cbab406cc83cd70083b2eb0f652bf4961fac0665783630075d640
- SSDEEP
  
  6144:8KurIbStgrXR6JqJCAL4WsXz11PDhTAXBg:8JrIbd49z6Bg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2