deb3a053ca5bba8f15993b23010a4b01c57b7c99a61b2391bb5c63c49cf98903 | Triage

Sharing

General

Target

c851916dee0779c97075f9476f18b120N.exe
Size

57KB
Sample

240726-m2eejatdqp
MD5

c851916dee0779c97075f9476f18b120
SHA1

123b633ae4c3245d03a5f56999fa201e93cc51cf
SHA256

deb3a053ca5bba8f15993b23010a4b01c57b7c99a61b2391bb5c63c49cf98903
SHA512

ed0ecabd76e8cbb63123f3980959d09dbfbfd705434fe176c254812d9d8d22511f86ebbc611d783181d3f3fd75894f6f9da6ac00254497ba726160f63d45c807
SSDEEP

768:MApQr0DWvdFJI34HGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7vVq:MAaJJlTsh7pWezEPJB+O4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c851916dee0779c97075f9476f18b120N.exe
- Size
  
  57KB
- MD5
  
  c851916dee0779c97075f9476f18b120
- SHA1
  
  123b633ae4c3245d03a5f56999fa201e93cc51cf
- SHA256
  
  deb3a053ca5bba8f15993b23010a4b01c57b7c99a61b2391bb5c63c49cf98903
- SHA512
  
  ed0ecabd76e8cbb63123f3980959d09dbfbfd705434fe176c254812d9d8d22511f86ebbc611d783181d3f3fd75894f6f9da6ac00254497ba726160f63d45c807
- SSDEEP
  
  768:MApQr0DWvdFJI34HGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7vVq:MAaJJlTsh7pWezEPJB+O4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2