6655eae45a8dba7963c328c38259693a8c21b157042f3a64ab2c2ff0ef4e2b35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c37943af82f04489e170c9202204c30N.exe
Size

55KB
Sample

240708-jythhasbrg
MD5

0c37943af82f04489e170c9202204c30
SHA1

16e76c6e58413cfb1552f0d1f7d158d1bd05cd23
SHA256

6655eae45a8dba7963c328c38259693a8c21b157042f3a64ab2c2ff0ef4e2b35
SHA512

2ef1b708cd6955928232fabc20c3d43f1f910187ae662851ea2b19a011800902c770d0f114aecfecf58987fc983d3b6f03df9c6cc5380104e8f36d1c1e5ac670
SSDEEP

384:5L1d8xSrN1g7xKudNdtADaM4E7FBoJZt2WHwGVeJe6Yk1lS++8UeXVud14+kna+g:5gx+WxKuMDaMpZiHccuFY1FQud1R3l

Score

7^/10

Malware Config

Targets

- Target
  
  0c37943af82f04489e170c9202204c30N.exe
- Size
  
  55KB
- MD5
  
  0c37943af82f04489e170c9202204c30
- SHA1
  
  16e76c6e58413cfb1552f0d1f7d158d1bd05cd23
- SHA256
  
  6655eae45a8dba7963c328c38259693a8c21b157042f3a64ab2c2ff0ef4e2b35
- SHA512
  
  2ef1b708cd6955928232fabc20c3d43f1f910187ae662851ea2b19a011800902c770d0f114aecfecf58987fc983d3b6f03df9c6cc5380104e8f36d1c1e5ac670
- SSDEEP
  
  384:5L1d8xSrN1g7xKudNdtADaM4E7FBoJZt2WHwGVeJe6Yk1lS++8UeXVud14+kna+g:5gx+WxKuMDaMpZiHccuFY1FQud1R3l
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2