5c415a3f7d2dfc912447dfde68e67c6b90cc0fd07011f8bd062390ad72111609 | Triage

Resubmissions

24/07/2024, 06:36

240724-hcz8gswbmf 7

24/07/2024, 06:33

240724-hbaanswapf 7

Sharing

General

Target

REQUEST FOR QUOTATION (RFQ)-124425.scr
Size

23KB
Sample

240724-hbaanswapf
MD5

13b563870ec11bf24082a47c0ffa12e3
SHA1

d1ad679cca265037497d6f9243112c87cba07e94
SHA256

5c415a3f7d2dfc912447dfde68e67c6b90cc0fd07011f8bd062390ad72111609
SHA512

7e3e0f061771f7b32f1a9d1ea63a65b6e7ae7f16105fa36cfd58e2ed16465194c99547d87a23002b5ca19896fcb74ba7e1e216f32c657fe0a0eef2a422466373
SSDEEP

384:DbFDeB9k5zv92N0gdn+UlVdiGeRe9H9qV5wtpZ92Fksaggy4oPNBr:DheB9wzlRgd+0Vdws9H6wHOGsJR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  REQUEST FOR QUOTATION (RFQ)-124425.scr
- Size
  
  23KB
- MD5
  
  13b563870ec11bf24082a47c0ffa12e3
- SHA1
  
  d1ad679cca265037497d6f9243112c87cba07e94
- SHA256
  
  5c415a3f7d2dfc912447dfde68e67c6b90cc0fd07011f8bd062390ad72111609
- SHA512
  
  7e3e0f061771f7b32f1a9d1ea63a65b6e7ae7f16105fa36cfd58e2ed16465194c99547d87a23002b5ca19896fcb74ba7e1e216f32c657fe0a0eef2a422466373
- SSDEEP
  
  384:DbFDeB9k5zv92N0gdn+UlVdiGeRe9H9qV5wtpZ92Fksaggy4oPNBr:DheB9wzlRgd+0Vdws9H6wHOGsJR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2