abb8e893a7220cef1d0c27a5557c3631f6caa989d2784197875629319a4b34d1 | Triage

Sharing

General

Target

7de0bb16f04494245d7624a5a44f3760N.exe
Size

52KB
Sample

240727-cdy4xssfqa
MD5

7de0bb16f04494245d7624a5a44f3760
SHA1

cd301fe4533aad83f14cc5cf30f6edd273e15347
SHA256

abb8e893a7220cef1d0c27a5557c3631f6caa989d2784197875629319a4b34d1
SHA512

70a557b67e1eec5c71ef17dd440eb7344efcf182fae0b2004c6e1cc66ae4d86e86bf181a098e84078dc0f0d7a972a1561797b4dc2f327867be4d67a4001cd782
SSDEEP

384:cnwR2F5SMtoLIYi4aYiyYNHsbDAez7Nu6NMVvz3g3hNAbhNp8yC:KwR1pjiy4Rez7Nuxh4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7de0bb16f04494245d7624a5a44f3760N.exe
- Size
  
  52KB
- MD5
  
  7de0bb16f04494245d7624a5a44f3760
- SHA1
  
  cd301fe4533aad83f14cc5cf30f6edd273e15347
- SHA256
  
  abb8e893a7220cef1d0c27a5557c3631f6caa989d2784197875629319a4b34d1
- SHA512
  
  70a557b67e1eec5c71ef17dd440eb7344efcf182fae0b2004c6e1cc66ae4d86e86bf181a098e84078dc0f0d7a972a1561797b4dc2f327867be4d67a4001cd782
- SSDEEP
  
  384:cnwR2F5SMtoLIYi4aYiyYNHsbDAez7Nu6NMVvz3g3hNAbhNp8yC:KwR1pjiy4Rez7Nuxh4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2