34b8b8028ba0768bdcc445da5e6e511c2b0df0111d12b3136c7a0610f6dd5871 | Triage

Sharing

General

Target

34b8b8028ba0768bdcc445da5e6e511c2b0df0111d12b3136c7a0610f6dd5871
Size

32KB
Sample

240710-zyhzrssdqe
MD5

719a9edc7ee31c0d73349217490f81bd
SHA1

66e1188a4c5c9a17c45fef2d243a5fdbc404baf7
SHA256

34b8b8028ba0768bdcc445da5e6e511c2b0df0111d12b3136c7a0610f6dd5871
SHA512

f4ea4b2620c2d5f805e8d06cbc13c1cd5c74eab4bd52260f58bde0a22ebe7d02f1c785e53dd1be8bd3d2143e2a7d2d3725d60ff7c4d18ebc3a8028be6f43fde8
SSDEEP

384:fY/7iMmQgVC+02JWuCSPmSQTebw/UqFPpF5bGwpUZyjAEbjS7DFHvY2S:y12JTPRQTeZq1bUWQD1Q2S

Score

7^/10

Malware Config

Targets

- Target
  
  34b8b8028ba0768bdcc445da5e6e511c2b0df0111d12b3136c7a0610f6dd5871
- Size
  
  32KB
- MD5
  
  719a9edc7ee31c0d73349217490f81bd
- SHA1
  
  66e1188a4c5c9a17c45fef2d243a5fdbc404baf7
- SHA256
  
  34b8b8028ba0768bdcc445da5e6e511c2b0df0111d12b3136c7a0610f6dd5871
- SHA512
  
  f4ea4b2620c2d5f805e8d06cbc13c1cd5c74eab4bd52260f58bde0a22ebe7d02f1c785e53dd1be8bd3d2143e2a7d2d3725d60ff7c4d18ebc3a8028be6f43fde8
- SSDEEP
  
  384:fY/7iMmQgVC+02JWuCSPmSQTebw/UqFPpF5bGwpUZyjAEbjS7DFHvY2S:y12JTPRQTeZq1bUWQD1Q2S
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2