e0e36acbafc3f405801263aeb1e2a794ea58d7035b6f19e33c93b9cb476b4cfd | Triage

Sharing

General

Target

30c6d095e8476812744837ea8cad1080N.exe
Size

22KB
Sample

240713-cq8tws1fjl
MD5

30c6d095e8476812744837ea8cad1080
SHA1

24d3a5f9e5fb129c8c2f0bbbf802feb022a2a4d3
SHA256

e0e36acbafc3f405801263aeb1e2a794ea58d7035b6f19e33c93b9cb476b4cfd
SHA512

e64e41e19c567b7853fa980496957e0f87cc3fbd3cc3186a5f51f00ec9720de43c8b0cf94be3200f8f55abf6ba8924c836caa1f6428e9fca56f1fb279377d28b
SSDEEP

384:OI8Qo7M2D9jCrBQ1+DdYAS+qA3IvNPcix4Y2wpF7vvxlLV51T8FIpEL:OI8R7My92yGBS+qAYvNU+4Y2w37DJIFD

Score

7^/10

Malware Config

Targets

- Target
  
  30c6d095e8476812744837ea8cad1080N.exe
- Size
  
  22KB
- MD5
  
  30c6d095e8476812744837ea8cad1080
- SHA1
  
  24d3a5f9e5fb129c8c2f0bbbf802feb022a2a4d3
- SHA256
  
  e0e36acbafc3f405801263aeb1e2a794ea58d7035b6f19e33c93b9cb476b4cfd
- SHA512
  
  e64e41e19c567b7853fa980496957e0f87cc3fbd3cc3186a5f51f00ec9720de43c8b0cf94be3200f8f55abf6ba8924c836caa1f6428e9fca56f1fb279377d28b
- SSDEEP
  
  384:OI8Qo7M2D9jCrBQ1+DdYAS+qA3IvNPcix4Y2wpF7vvxlLV51T8FIpEL:OI8R7My92yGBS+qAYvNU+4Y2w37DJIFD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2