0d3bda2633ca4ed790a0e9a287404c2c6ea9697db75d7289bf9f965812988df3 | Triage

Sharing

General

Target

0d3bda2633ca4ed790a0e9a287404c2c6ea9697db75d7289bf9f965812988df3
Size

43KB
Sample

240706-xa54aasblh
MD5

1290e6ae22876b103cea48abf97e047c
SHA1

9fb9e7379f884d4ad20e542ab9335a20eba1487d
SHA256

0d3bda2633ca4ed790a0e9a287404c2c6ea9697db75d7289bf9f965812988df3
SHA512

18112462dbd74fa9bc70dae77467134374391af742507463690e8c0c6a7f963be94620f331fdde66bf9ab1f8ccc961fb0db438e5a6116520face5661aa3939c8
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95Wr:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFA

Score

7^/10

Malware Config

Targets

- Target
  
  0d3bda2633ca4ed790a0e9a287404c2c6ea9697db75d7289bf9f965812988df3
- Size
  
  43KB
- MD5
  
  1290e6ae22876b103cea48abf97e047c
- SHA1
  
  9fb9e7379f884d4ad20e542ab9335a20eba1487d
- SHA256
  
  0d3bda2633ca4ed790a0e9a287404c2c6ea9697db75d7289bf9f965812988df3
- SHA512
  
  18112462dbd74fa9bc70dae77467134374391af742507463690e8c0c6a7f963be94620f331fdde66bf9ab1f8ccc961fb0db438e5a6116520face5661aa3939c8
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95Wr:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2