4dfa3aa3dc6fffa9ff8ceabe1d8b1e5fdd49d6aaa834838fca252a329c528b7d | Triage

Sharing

General

Target

7d495052aac7e42df01f5a6cb0a24930N.exe
Size

39KB
Sample

240727-cam79asdpc
MD5

7d495052aac7e42df01f5a6cb0a24930
SHA1

416e46646bb1b399cf196bb104b040eef71de9bc
SHA256

4dfa3aa3dc6fffa9ff8ceabe1d8b1e5fdd49d6aaa834838fca252a329c528b7d
SHA512

3a55d37a7cfdfd81114a616886ceca5ecee582d21c7c4d1767fdad1bccb12ecfde5db077d77c11e3930e4903aca8372d9e0543483ab7c83b947d69f5c03b29db
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0Upad:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XB

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7d495052aac7e42df01f5a6cb0a24930N.exe
- Size
  
  39KB
- MD5
  
  7d495052aac7e42df01f5a6cb0a24930
- SHA1
  
  416e46646bb1b399cf196bb104b040eef71de9bc
- SHA256
  
  4dfa3aa3dc6fffa9ff8ceabe1d8b1e5fdd49d6aaa834838fca252a329c528b7d
- SHA512
  
  3a55d37a7cfdfd81114a616886ceca5ecee582d21c7c4d1767fdad1bccb12ecfde5db077d77c11e3930e4903aca8372d9e0543483ab7c83b947d69f5c03b29db
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0Upad:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XB
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2