3bdbca5f67754b92ff8d89e2db9f0ed3c5d50f8b434577866d18faa4c1fd343c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3bdbca5f67754b92ff8d89e2db9f0ed3c5d50f8b434577866d18faa4c1fd343c
Size

898KB
Sample

240806-11rv5ascjq
MD5

eeecdefa939b534bc8f774a15e05ab0f
SHA1

4a20176527706aea33b22f436f6856572a9e4946
SHA256

3bdbca5f67754b92ff8d89e2db9f0ed3c5d50f8b434577866d18faa4c1fd343c
SHA512

3253eaebc2b14186131ac2170f8a62fe8271bf20ddf8b1024036fd1f9a00ea2d8d8b79646af9a8476d440374146bec3130591779b083905563146921b969b381
SSDEEP

24576:juDXTIGaPhEYzUzA0aCuDXTIGaPhEYzUzA0bhK:KDjlabwz9QDjlabwz9lK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3bdbca5f67754b92ff8d89e2db9f0ed3c5d50f8b434577866d18faa4c1fd343c
- Size
  
  898KB
- MD5
  
  eeecdefa939b534bc8f774a15e05ab0f
- SHA1
  
  4a20176527706aea33b22f436f6856572a9e4946
- SHA256
  
  3bdbca5f67754b92ff8d89e2db9f0ed3c5d50f8b434577866d18faa4c1fd343c
- SHA512
  
  3253eaebc2b14186131ac2170f8a62fe8271bf20ddf8b1024036fd1f9a00ea2d8d8b79646af9a8476d440374146bec3130591779b083905563146921b969b381
- SSDEEP
  
  24576:juDXTIGaPhEYzUzA0aCuDXTIGaPhEYzUzA0bhK:KDjlabwz9QDjlabwz9lK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2