753fb538b8c1a9182a54e78825d5b5d025312d59fe7e7d82230b1496283f0916 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

373517bebb2f0a306ad5a69851353020N.exe
Size

57KB
Sample

240722-a6c12stala
MD5

373517bebb2f0a306ad5a69851353020
SHA1

418aeed3cde2a07fd846361fa739a623dfc3e9fe
SHA256

753fb538b8c1a9182a54e78825d5b5d025312d59fe7e7d82230b1496283f0916
SHA512

e8280a1087934a73e8f0178c3a7c1073cd2ae306cb16674c778680db6cbd921e9410a4c74a7baadcbb5304c6063824b3311909a55797450602269ddc210c0c48
SSDEEP

384:PsjPGY2HXgrk8YhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlRufmm:PePG5H8+hKD8ISZQjkgs1lxlRAmm

Score

7^/10

Malware Config

Targets

- Target
  
  373517bebb2f0a306ad5a69851353020N.exe
- Size
  
  57KB
- MD5
  
  373517bebb2f0a306ad5a69851353020
- SHA1
  
  418aeed3cde2a07fd846361fa739a623dfc3e9fe
- SHA256
  
  753fb538b8c1a9182a54e78825d5b5d025312d59fe7e7d82230b1496283f0916
- SHA512
  
  e8280a1087934a73e8f0178c3a7c1073cd2ae306cb16674c778680db6cbd921e9410a4c74a7baadcbb5304c6063824b3311909a55797450602269ddc210c0c48
- SSDEEP
  
  384:PsjPGY2HXgrk8YhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlRufmm:PePG5H8+hKD8ISZQjkgs1lxlRAmm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2