696d211f20099957356bb36ae0bdab9b0a6864ac3817c2446bb15bdbf21afcb2 | Triage

Sharing

General

Target

b6e1cbd182f1a207b2bc85590d2fd6a0N.exe
Size

540KB
Sample

240726-lfnweasgqb
MD5

b6e1cbd182f1a207b2bc85590d2fd6a0
SHA1

16b5bcef3293ec26d4009f45d448d857ad303205
SHA256

696d211f20099957356bb36ae0bdab9b0a6864ac3817c2446bb15bdbf21afcb2
SHA512

9a18b2b7c5b1554e8313b248b2d33ce4be22c1322bc65264ca27fcc35ad0c05b274903a8bd66988c6f4983917d3f4f84337761e47e0b117a1b58cd4abb0fcfef
SSDEEP

6144:jZQx+mI07CciO8DoOiECX0oAppVeh2ELimSlaJwDFO+sdN3+f2XkTl+XOzol+KXl:a95iO8D3CXQVI/LiaJAFO5DMWrXNcc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b6e1cbd182f1a207b2bc85590d2fd6a0N.exe
- Size
  
  540KB
- MD5
  
  b6e1cbd182f1a207b2bc85590d2fd6a0
- SHA1
  
  16b5bcef3293ec26d4009f45d448d857ad303205
- SHA256
  
  696d211f20099957356bb36ae0bdab9b0a6864ac3817c2446bb15bdbf21afcb2
- SHA512
  
  9a18b2b7c5b1554e8313b248b2d33ce4be22c1322bc65264ca27fcc35ad0c05b274903a8bd66988c6f4983917d3f4f84337761e47e0b117a1b58cd4abb0fcfef
- SSDEEP
  
  6144:jZQx+mI07CciO8DoOiECX0oAppVeh2ELimSlaJwDFO+sdN3+f2XkTl+XOzol+KXl:a95iO8D3CXQVI/LiaJAFO5DMWrXNcc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2