ae3563b01edfa5d0efc23d3218b6814b96c3ef5fd962415f9d8005007ff25d9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

044d357cff5e9e8bbc1ef966d2a73380N.exe
Size

35KB
Sample

240801-z8n9ja1brc
MD5

044d357cff5e9e8bbc1ef966d2a73380
SHA1

83d74ec4d716ef628b8b8c1697d2f041f7657e5c
SHA256

ae3563b01edfa5d0efc23d3218b6814b96c3ef5fd962415f9d8005007ff25d9a
SHA512

9f992e0a69bce927b7b75b10f617a86973f7f0803602976e18eab72778ba44c23e763fc1d2b7dd8d77d483b21611ffa2c84e37e2d011dab6f3a334e4fd99f992
SSDEEP

384:tGx04wzHycMnzWHr5r9Vc5lxr8gPkijToDeYBWX2SENkNSflyzDWeQ3jjiMU:UxHc0Im/8m9TMe+WGFUSflyWW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  044d357cff5e9e8bbc1ef966d2a73380N.exe
- Size
  
  35KB
- MD5
  
  044d357cff5e9e8bbc1ef966d2a73380
- SHA1
  
  83d74ec4d716ef628b8b8c1697d2f041f7657e5c
- SHA256
  
  ae3563b01edfa5d0efc23d3218b6814b96c3ef5fd962415f9d8005007ff25d9a
- SHA512
  
  9f992e0a69bce927b7b75b10f617a86973f7f0803602976e18eab72778ba44c23e763fc1d2b7dd8d77d483b21611ffa2c84e37e2d011dab6f3a334e4fd99f992
- SSDEEP
  
  384:tGx04wzHycMnzWHr5r9Vc5lxr8gPkijToDeYBWX2SENkNSflyzDWeQ3jjiMU:UxHc0Im/8m9TMe+WGFUSflyWW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2