5c01e8bc070331e06b7811ff0515ee83e9106b680d7e0543aa8d6a7b86838008 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c01e8bc070331e06b7811ff0515ee83e9106b680d7e0543aa8d6a7b86838008
Size

42KB
Sample

240707-2h6r1azcjk
MD5

00aaf5132a645f30636b334dde933d77
SHA1

2d570ae5c29d9e25b943ba15ac3423ddc5ba3b8e
SHA256

5c01e8bc070331e06b7811ff0515ee83e9106b680d7e0543aa8d6a7b86838008
SHA512

4090d580bff4b77295c45c2374e6fba2a6c1e7d4a639ecdc1d16ae75ec6f741a8e6b7486d0865440fb82be3787f87a5aab0094c9f13886dbe8e418494f2dbe30
SSDEEP

768:m8eRH+9lFh0ul16sh7iQroCHXf+RjFBSuB2XdT1h:m9l+Z16sh7iQroCWRB0uaT7

Score

7^/10

Malware Config

Targets

- Target
  
  5c01e8bc070331e06b7811ff0515ee83e9106b680d7e0543aa8d6a7b86838008
- Size
  
  42KB
- MD5
  
  00aaf5132a645f30636b334dde933d77
- SHA1
  
  2d570ae5c29d9e25b943ba15ac3423ddc5ba3b8e
- SHA256
  
  5c01e8bc070331e06b7811ff0515ee83e9106b680d7e0543aa8d6a7b86838008
- SHA512
  
  4090d580bff4b77295c45c2374e6fba2a6c1e7d4a639ecdc1d16ae75ec6f741a8e6b7486d0865440fb82be3787f87a5aab0094c9f13886dbe8e418494f2dbe30
- SSDEEP
  
  768:m8eRH+9lFh0ul16sh7iQroCHXf+RjFBSuB2XdT1h:m9l+Z16sh7iQroCWRB0uaT7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2