405280fcb82e3807b562b6cd01f3226cd5ba97d4a3df8d418c89041871bb4205 | Triage

Sharing

General

Target

405280fcb82e3807b562b6cd01f3226cd5ba97d4a3df8d418c89041871bb4205
Size

17KB
Sample

240722-zgbjcsxern
MD5

bd33f2b46a6ee97e0d254225bc28b7ba
SHA1

feebc19a760456d918816513a24cc444abe3bf3f
SHA256

405280fcb82e3807b562b6cd01f3226cd5ba97d4a3df8d418c89041871bb4205
SHA512

35d806f84b5af38e1e3811bf506fcf794388573ff777418fbebb0e8ed8d4c2605935fc3faf69c9e236777bcfed2b1b236de4136dd42a4cc0eb3e593b8bc8d716
SSDEEP

192:x2Xn7CQWRIgaXE2Vu3zDbNuOWn+UG0vq01CkCz9WQQ4H8qXpZQFVHfQeEy:xiOQWRIga02iBunne0vq0/Cz9W5q5gEy

Score

7^/10

Malware Config

Targets

- Target
  
  405280fcb82e3807b562b6cd01f3226cd5ba97d4a3df8d418c89041871bb4205
- Size
  
  17KB
- MD5
  
  bd33f2b46a6ee97e0d254225bc28b7ba
- SHA1
  
  feebc19a760456d918816513a24cc444abe3bf3f
- SHA256
  
  405280fcb82e3807b562b6cd01f3226cd5ba97d4a3df8d418c89041871bb4205
- SHA512
  
  35d806f84b5af38e1e3811bf506fcf794388573ff777418fbebb0e8ed8d4c2605935fc3faf69c9e236777bcfed2b1b236de4136dd42a4cc0eb3e593b8bc8d716
- SSDEEP
  
  192:x2Xn7CQWRIgaXE2Vu3zDbNuOWn+UG0vq01CkCz9WQQ4H8qXpZQFVHfQeEy:xiOQWRIga02iBunne0vq0/Cz9W5q5gEy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2