c1a124e9904ee00eb2fdb77da767838e55a27660ca804e9d84fcaee4e80f4aa4 | Triage

Sharing

General

Target

59f8e00e6252280b8d43b38d60705990N.exe
Size

57KB
Sample

240715-bzhtdsvaqg
MD5

59f8e00e6252280b8d43b38d60705990
SHA1

6f52f1d51a54aa0ff6fa1812117ff2a64c0de59c
SHA256

c1a124e9904ee00eb2fdb77da767838e55a27660ca804e9d84fcaee4e80f4aa4
SHA512

16d69a71872885789126788d8e3120cf2c38158a701878e98be861b1b4ef1fccced9863d6d15bfcd6254442330badd57be3ba7ed1a4c05819e85fa4464b4c228
SSDEEP

384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlF8fmLv:aePG5H8XhKD8ISZQjkgs1lxlFemLv

Score

7^/10

Malware Config

Targets

- Target
  
  59f8e00e6252280b8d43b38d60705990N.exe
- Size
  
  57KB
- MD5
  
  59f8e00e6252280b8d43b38d60705990
- SHA1
  
  6f52f1d51a54aa0ff6fa1812117ff2a64c0de59c
- SHA256
  
  c1a124e9904ee00eb2fdb77da767838e55a27660ca804e9d84fcaee4e80f4aa4
- SHA512
  
  16d69a71872885789126788d8e3120cf2c38158a701878e98be861b1b4ef1fccced9863d6d15bfcd6254442330badd57be3ba7ed1a4c05819e85fa4464b4c228
- SSDEEP
  
  384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlF8fmLv:aePG5H8XhKD8ISZQjkgs1lxlFemLv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2