474f5a044dba8065d5a8f75d6753a9181a23f5dfb511db45a5127c93d6b7522a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

34799e735aa9445ca94c7a00349a1f0f.bin
Size

51KB
Sample

240728-bqafnasgqb
MD5

34799e735aa9445ca94c7a00349a1f0f
SHA1

8b4a862b4da8a19c1e5c1527f0004224b0933541
SHA256

474f5a044dba8065d5a8f75d6753a9181a23f5dfb511db45a5127c93d6b7522a
SHA512

d3e4ae61af34ef57c5d8babfbc930f44db120db91b8ee94209f40a75f37d81d0947dd15ecf3d6e036fb4b9e5c0ece9ee8ed7c79cafce57a6826115d59801e1ef
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nd7:vj+jsMQMOtEvwDpj5HczerLO04Ba7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  34799e735aa9445ca94c7a00349a1f0f.bin
- Size
  
  51KB
- MD5
  
  34799e735aa9445ca94c7a00349a1f0f
- SHA1
  
  8b4a862b4da8a19c1e5c1527f0004224b0933541
- SHA256
  
  474f5a044dba8065d5a8f75d6753a9181a23f5dfb511db45a5127c93d6b7522a
- SHA512
  
  d3e4ae61af34ef57c5d8babfbc930f44db120db91b8ee94209f40a75f37d81d0947dd15ecf3d6e036fb4b9e5c0ece9ee8ed7c79cafce57a6826115d59801e1ef
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nd7:vj+jsMQMOtEvwDpj5HczerLO04Ba7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2