2dd4a3ae0c484ff708cb17f230914f6127ad26a6d27dabe82050ea15888e5bd2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2dd4a3ae0c484ff708cb17f230914f6127ad26a6d27dabe82050ea15888e5bd2
Size

1.9MB
Sample

240716-ffnyhsvhnj
MD5

8c356c26fbf2df91d0fe81e043b5b17f
SHA1

32858e3e3c9f095e3a692040626868645a030a01
SHA256

2dd4a3ae0c484ff708cb17f230914f6127ad26a6d27dabe82050ea15888e5bd2
SHA512

2e41288cb00fb1e51d79545201c6225a8832b777aa582fc683eb937a794a9c4c0c441f83b9fbd5db3117aafd16dbdc2675a4d0e2f5f142fb2bb0eb751db3f9d3
SSDEEP

24576:XZnnUBXgDqCFZn3LDV9NCS35t7NBwBuqHpWQuk6YEIBG9eBaxVgNsmChhthTZNbo:XZatC7fV9lL7NCBuNWNaxVLmyNbWAls

Score

7^/10

Malware Config

Targets

- Target
  
  2dd4a3ae0c484ff708cb17f230914f6127ad26a6d27dabe82050ea15888e5bd2
- Size
  
  1.9MB
- MD5
  
  8c356c26fbf2df91d0fe81e043b5b17f
- SHA1
  
  32858e3e3c9f095e3a692040626868645a030a01
- SHA256
  
  2dd4a3ae0c484ff708cb17f230914f6127ad26a6d27dabe82050ea15888e5bd2
- SHA512
  
  2e41288cb00fb1e51d79545201c6225a8832b777aa582fc683eb937a794a9c4c0c441f83b9fbd5db3117aafd16dbdc2675a4d0e2f5f142fb2bb0eb751db3f9d3
- SSDEEP
  
  24576:XZnnUBXgDqCFZn3LDV9NCS35t7NBwBuqHpWQuk6YEIBG9eBaxVgNsmChhthTZNbo:XZatC7fV9lL7NCBuNWNaxVLmyNbWAls
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2