7a80b17b70a3b3275f4343ac5e75a4be72cb4c6bd91b1d12fac438f3dcb6f52c | Triage

Sharing

General

Target

6b873a6158bb19e12288f500129d1090N.exe
Size

46KB
Sample

240805-j338havdlf
MD5

6b873a6158bb19e12288f500129d1090
SHA1

4dfb1d7e786f73d6e34aed6ca7454d1320cd0684
SHA256

7a80b17b70a3b3275f4343ac5e75a4be72cb4c6bd91b1d12fac438f3dcb6f52c
SHA512

2f48b55a461686c562a57d52c18b401ec4bfaddcbd4ba26d3040cf9c5380ffe153c40416317f770004f1de1e1610cd8828e98f333378df820983efbbaaeb1e0b
SSDEEP

192:GrITdb2X2VFmfjNIGmMTPUEN7jIZSnDJLVwqnkqU/CDolaFy:yIT4BjKGmMztNvIZSD/wHqUWolT

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6b873a6158bb19e12288f500129d1090N.exe
- Size
  
  46KB
- MD5
  
  6b873a6158bb19e12288f500129d1090
- SHA1
  
  4dfb1d7e786f73d6e34aed6ca7454d1320cd0684
- SHA256
  
  7a80b17b70a3b3275f4343ac5e75a4be72cb4c6bd91b1d12fac438f3dcb6f52c
- SHA512
  
  2f48b55a461686c562a57d52c18b401ec4bfaddcbd4ba26d3040cf9c5380ffe153c40416317f770004f1de1e1610cd8828e98f333378df820983efbbaaeb1e0b
- SSDEEP
  
  192:GrITdb2X2VFmfjNIGmMTPUEN7jIZSnDJLVwqnkqU/CDolaFy:yIT4BjKGmMztNvIZSD/wHqUWolT
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2