d007e15b425afbe8550b3e63905e88aebb9e7dab4be628df68d2360526acfc60 | Triage

Sharing

General

Target

d007e15b425afbe8550b3e63905e88aebb9e7dab4be628df68d2360526acfc60
Size

51KB
Sample

240803-dwnlks1gmj
MD5

28365c777d2437c7cb44be6953a21bfa
SHA1

db81e9981f1bb49d4422ae34385751549939d4f3
SHA256

d007e15b425afbe8550b3e63905e88aebb9e7dab4be628df68d2360526acfc60
SHA512

e54a74755255e33e645f098a499bad12f453d6cc56744208d6b147a5de358f992acbb31af83b0d16566a5c882f7e14ddc9af5aefd55d1cf1963b22214326c6cf
SSDEEP

1536:d2jXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8gIux9Mz+E6P8+kzCzJ:d2jXRrs9sINeZEtejlIkoLN127BFVn2F

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d007e15b425afbe8550b3e63905e88aebb9e7dab4be628df68d2360526acfc60
- Size
  
  51KB
- MD5
  
  28365c777d2437c7cb44be6953a21bfa
- SHA1
  
  db81e9981f1bb49d4422ae34385751549939d4f3
- SHA256
  
  d007e15b425afbe8550b3e63905e88aebb9e7dab4be628df68d2360526acfc60
- SHA512
  
  e54a74755255e33e645f098a499bad12f453d6cc56744208d6b147a5de358f992acbb31af83b0d16566a5c882f7e14ddc9af5aefd55d1cf1963b22214326c6cf
- SSDEEP
  
  1536:d2jXRrs9sINeZEtejlIkoLN127BFVn2p4lAnZ8gIux9Mz+E6P8+kzCzJ:d2jXRrs9sINeZEtejlIkoLN127BFVn2F
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2