66d2adc09e737744198baf71db943a95c4196324a38538b2268963cab226fd3d | Triage

Sharing

General

Target

66d2adc09e737744198baf71db943a95c4196324a38538b2268963cab226fd3d
Size

41KB
Sample

240725-2gjwvasbpg
MD5

3912bd83ae9bf6e936e9437721ff7e9c
SHA1

49bf01a650dd23f112ffb31100903005833abc67
SHA256

66d2adc09e737744198baf71db943a95c4196324a38538b2268963cab226fd3d
SHA512

5edf45a0fce086739c838604529f12cf499f96b681942d7f617efe6fb895526779d3894f1dbb395966a3a20a6996f0348a173db512a05719e0ed982027f64294
SSDEEP

384:DLR7iSYIwM+6GyXzQNSOwOmOzO6iQspWGqYx1jYCKt7VpEi6xX+K2OexXjbuR6xT:DLR7ix70zQozpW7YYCqgiQ0OEmAmMn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  66d2adc09e737744198baf71db943a95c4196324a38538b2268963cab226fd3d
- Size
  
  41KB
- MD5
  
  3912bd83ae9bf6e936e9437721ff7e9c
- SHA1
  
  49bf01a650dd23f112ffb31100903005833abc67
- SHA256
  
  66d2adc09e737744198baf71db943a95c4196324a38538b2268963cab226fd3d
- SHA512
  
  5edf45a0fce086739c838604529f12cf499f96b681942d7f617efe6fb895526779d3894f1dbb395966a3a20a6996f0348a173db512a05719e0ed982027f64294
- SSDEEP
  
  384:DLR7iSYIwM+6GyXzQNSOwOmOzO6iQspWGqYx1jYCKt7VpEi6xX+K2OexXjbuR6xT:DLR7ix70zQozpW7YYCqgiQ0OEmAmMn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2