0494ce1c6520d3aad6f9f9f35266c9dffacd59802e1deb144f92c5aa831f4dbb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0494ce1c6520d3aad6f9f9f35266c9dffacd59802e1deb144f92c5aa831f4dbb.exe
Size

763KB
Sample

240704-x8w82axdme
MD5

4e0e6525eff38e09ce79c6671a418a10
SHA1

3fbcefdf219fc5342265086160ccd2d4b8b4aa9c
SHA256

0494ce1c6520d3aad6f9f9f35266c9dffacd59802e1deb144f92c5aa831f4dbb
SHA512

b446dbdeb5ba221ffb435c6dda895460fa86815f076d642539fda7edebe3b1022155860f6c3c04381692ecc6630c6d5b8dd0689e6b8133112c02cc2237f76f0a
SSDEEP

3072:tZTz1WIXC6GESSgWNRXumi7+IF6foPCaTRMXbaev0FQcmWk6kwsNIf6cHzbQ2v0V:tZHcIX9SSgMi+IFZMbQrkodzb4VF2Yd

Score

7^/10

Malware Config

Targets

- Target
  
  0494ce1c6520d3aad6f9f9f35266c9dffacd59802e1deb144f92c5aa831f4dbb.exe
- Size
  
  763KB
- MD5
  
  4e0e6525eff38e09ce79c6671a418a10
- SHA1
  
  3fbcefdf219fc5342265086160ccd2d4b8b4aa9c
- SHA256
  
  0494ce1c6520d3aad6f9f9f35266c9dffacd59802e1deb144f92c5aa831f4dbb
- SHA512
  
  b446dbdeb5ba221ffb435c6dda895460fa86815f076d642539fda7edebe3b1022155860f6c3c04381692ecc6630c6d5b8dd0689e6b8133112c02cc2237f76f0a
- SSDEEP
  
  3072:tZTz1WIXC6GESSgWNRXumi7+IF6foPCaTRMXbaev0FQcmWk6kwsNIf6cHzbQ2v0V:tZHcIX9SSgMi+IFZMbQrkodzb4VF2Yd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2