579f8367e4c9b719272e632e1ce4fde8fab2294203b82251640406cbb1c8b0bb | Triage

Sharing

General

Target

579f8367e4c9b719272e632e1ce4fde8fab2294203b82251640406cbb1c8b0bb
Size

13.0MB
Sample

240721-ynbx2asajd
MD5

4b55cb09a7aaa655bff315854cc1d491
SHA1

26db65eb6b0d6a7ed70fc129f249f2bc18b3ab27
SHA256

579f8367e4c9b719272e632e1ce4fde8fab2294203b82251640406cbb1c8b0bb
SHA512

c7baf1ce5dcc7ca6dbe80db336f092e2805223db62e7008ad31943aaed63b6e71e1371202d6ed048a8f78b41398367747a0ed2683a22e270967b1e3237f739e8
SSDEEP

393216:sb0zsM3W+TQbcVCuTTEVUiWT1u8F7WDoVeSnk:sb0zPswIxUziDovk

Score

7^/10

Malware Config

Targets

- Target
  
  579f8367e4c9b719272e632e1ce4fde8fab2294203b82251640406cbb1c8b0bb
- Size
  
  13.0MB
- MD5
  
  4b55cb09a7aaa655bff315854cc1d491
- SHA1
  
  26db65eb6b0d6a7ed70fc129f249f2bc18b3ab27
- SHA256
  
  579f8367e4c9b719272e632e1ce4fde8fab2294203b82251640406cbb1c8b0bb
- SHA512
  
  c7baf1ce5dcc7ca6dbe80db336f092e2805223db62e7008ad31943aaed63b6e71e1371202d6ed048a8f78b41398367747a0ed2683a22e270967b1e3237f739e8
- SSDEEP
  
  393216:sb0zsM3W+TQbcVCuTTEVUiWT1u8F7WDoVeSnk:sb0zPswIxUziDovk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2