e9c1258707bb6a14b5603ebc7778ba6753ce4a923cc681a90b2af3b339d31cb6 | Triage

Sharing

General

Target

ce748fe4c4a3b23836cbed2158a2c700N.exe
Size

25KB
Sample

240715-ngv28awgqf
MD5

ce748fe4c4a3b23836cbed2158a2c700
SHA1

cb5208ad3b7449bfb69b949cd224c0cad5fe92ee
SHA256

e9c1258707bb6a14b5603ebc7778ba6753ce4a923cc681a90b2af3b339d31cb6
SHA512

722a91e4fcfba36b7605a533dd8a45606a73cac98ed7d80480c1be09b12a518d5fde510a070450339125aac320121c3f9ce35b86a6c3c88434f5d4865feb8d20
SSDEEP

384:/4yJGYp9M7R7U+is4WSE/Fs1iAyEudnhUH:QYG8ye+isOEdsWfdhi

Score

7^/10

Malware Config

Targets

- Target
  
  ce748fe4c4a3b23836cbed2158a2c700N.exe
- Size
  
  25KB
- MD5
  
  ce748fe4c4a3b23836cbed2158a2c700
- SHA1
  
  cb5208ad3b7449bfb69b949cd224c0cad5fe92ee
- SHA256
  
  e9c1258707bb6a14b5603ebc7778ba6753ce4a923cc681a90b2af3b339d31cb6
- SHA512
  
  722a91e4fcfba36b7605a533dd8a45606a73cac98ed7d80480c1be09b12a518d5fde510a070450339125aac320121c3f9ce35b86a6c3c88434f5d4865feb8d20
- SSDEEP
  
  384:/4yJGYp9M7R7U+is4WSE/Fs1iAyEudnhUH:QYG8ye+isOEdsWfdhi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2