91f7418297fb1d497923ef939ce164cad5b86bf2cd0b4a4624557cedc8f2b49c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91f7418297fb1d497923ef939ce164cad5b86bf2cd0b4a4624557cedc8f2b49c
Size

40KB
Sample

240806-ae6jaashql
MD5

185a01a3a80b59b013ea6aac7cd8c67b
SHA1

6b0ed4dcb9c27d6eafbae3fda61a8a796ab0fce9
SHA256

91f7418297fb1d497923ef939ce164cad5b86bf2cd0b4a4624557cedc8f2b49c
SHA512

e648cdfbc03bd6bc171a5aafd42e66867880bca47dd7213a5377eca0b4dc0901516c97132e968c5b7a2e8ebdf5bdbc79477ea3b07669e93abaee7efb99f93531
SSDEEP

768:WBz/vjmTfG4LJjBaECkegSi7xsYhaKDvdkBS0KblFz0F/JmINuWQcF:Kz2u4LJjBaECkLSi7xsYhaKDVv0KbXzG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  91f7418297fb1d497923ef939ce164cad5b86bf2cd0b4a4624557cedc8f2b49c
- Size
  
  40KB
- MD5
  
  185a01a3a80b59b013ea6aac7cd8c67b
- SHA1
  
  6b0ed4dcb9c27d6eafbae3fda61a8a796ab0fce9
- SHA256
  
  91f7418297fb1d497923ef939ce164cad5b86bf2cd0b4a4624557cedc8f2b49c
- SHA512
  
  e648cdfbc03bd6bc171a5aafd42e66867880bca47dd7213a5377eca0b4dc0901516c97132e968c5b7a2e8ebdf5bdbc79477ea3b07669e93abaee7efb99f93531
- SSDEEP
  
  768:WBz/vjmTfG4LJjBaECkegSi7xsYhaKDvdkBS0KblFz0F/JmINuWQcF:Kz2u4LJjBaECkLSi7xsYhaKDVv0KbXzG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2