98cdf3bac921f39a53e362d1481d42564b6e5eb88d6c72885c4e3c174a104ced | Triage

Sharing

General

Target

98cdf3bac921f39a53e362d1481d42564b6e5eb88d6c72885c4e3c174a104ced
Size

42KB
Sample

240709-cws1ma1hlp
MD5

8cd6d1fadaaab81a74c35f138a370f54
SHA1

be2c612d2bc655239397d6a9bb6c1f85d86c0a3d
SHA256

98cdf3bac921f39a53e362d1481d42564b6e5eb88d6c72885c4e3c174a104ced
SHA512

b95e04a8ab87166394be1a78ffd50815131ecb4fab30f6ec479896acfde95f5591afbc0f757648c2bda3d2ef40a8ec2421b12dd800c7c84707d0ce4c31b44aa9
SSDEEP

768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVna:BMH3lNMKkPzT8Qsa

Score

7^/10

Malware Config

Targets

- Target
  
  98cdf3bac921f39a53e362d1481d42564b6e5eb88d6c72885c4e3c174a104ced
- Size
  
  42KB
- MD5
  
  8cd6d1fadaaab81a74c35f138a370f54
- SHA1
  
  be2c612d2bc655239397d6a9bb6c1f85d86c0a3d
- SHA256
  
  98cdf3bac921f39a53e362d1481d42564b6e5eb88d6c72885c4e3c174a104ced
- SHA512
  
  b95e04a8ab87166394be1a78ffd50815131ecb4fab30f6ec479896acfde95f5591afbc0f757648c2bda3d2ef40a8ec2421b12dd800c7c84707d0ce4c31b44aa9
- SSDEEP
  
  768:mUz4HXnmTggggggLvggggggggSvNltsdUk7Nz1XzTx6QXTDcVna:BMH3lNMKkPzT8Qsa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2