e13d7dc71c00b5977f322301d6acc753ed2ae14f5e8ea8a4c11772b77c1808f6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f97166ddb97d2b99404f98ab7212920N.exe
Size

33KB
Sample

240715-cg84asvhqf
MD5

5f97166ddb97d2b99404f98ab7212920
SHA1

884666503f33690b102ca139e1a7dba7b4487026
SHA256

e13d7dc71c00b5977f322301d6acc753ed2ae14f5e8ea8a4c11772b77c1808f6
SHA512

283e500ce4d0b24c7281ed104e261c796bacf161fb87c054382e45791dcfa4a0d0f755fe4c5697dc9af056ef04f8df285ad64a59a66fe3e8b60f355423be7895
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuaz:bG74zYcgT/Ekd0ryfji

Score

7^/10

Malware Config

Targets

- Target
  
  5f97166ddb97d2b99404f98ab7212920N.exe
- Size
  
  33KB
- MD5
  
  5f97166ddb97d2b99404f98ab7212920
- SHA1
  
  884666503f33690b102ca139e1a7dba7b4487026
- SHA256
  
  e13d7dc71c00b5977f322301d6acc753ed2ae14f5e8ea8a4c11772b77c1808f6
- SHA512
  
  283e500ce4d0b24c7281ed104e261c796bacf161fb87c054382e45791dcfa4a0d0f755fe4c5697dc9af056ef04f8df285ad64a59a66fe3e8b60f355423be7895
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuaz:bG74zYcgT/Ekd0ryfji
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2