2489590f29d202dda17ee582a117fd016dd7c86e35e62bb458804d3943073349 | Triage

Sharing

General

Target

2489590f29d202dda17ee582a117fd016dd7c86e35e62bb458804d3943073349
Size

85KB
Sample

240630-ydr69swhqn
MD5

73c79f42a6f93575c2392a663345ed88
SHA1

92963d3e0059a9a007adf2ec8c8c525b19f71930
SHA256

2489590f29d202dda17ee582a117fd016dd7c86e35e62bb458804d3943073349
SHA512

4b07e8ca920b6fa4255a126717260360af3358d668fd4c4ceeb0b49c56879dc54b2528bf59154131582e90f83a2440a28dc1f1a581fb9de6a2c6fbf3c40e13a5
SSDEEP

1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zYeDdC:IGjot7UQLtdgI2MyzNORQtOflIwoHNVd

Score

7^/10

Malware Config

Targets

- Target
  
  2489590f29d202dda17ee582a117fd016dd7c86e35e62bb458804d3943073349
- Size
  
  85KB
- MD5
  
  73c79f42a6f93575c2392a663345ed88
- SHA1
  
  92963d3e0059a9a007adf2ec8c8c525b19f71930
- SHA256
  
  2489590f29d202dda17ee582a117fd016dd7c86e35e62bb458804d3943073349
- SHA512
  
  4b07e8ca920b6fa4255a126717260360af3358d668fd4c4ceeb0b49c56879dc54b2528bf59154131582e90f83a2440a28dc1f1a581fb9de6a2c6fbf3c40e13a5
- SSDEEP
  
  1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zYeDdC:IGjot7UQLtdgI2MyzNORQtOflIwoHNVd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2