76ffb54d0016f607ccfdcbf269ca0c3c6d0703a9f1dc19a33a033796d5cc23a5 | Triage

Sharing

General

Target

76ffb54d0016f607ccfdcbf269ca0c3c6d0703a9f1dc19a33a033796d5cc23a5
Size

30KB
Sample

240808-2rwcma1gqk
MD5

d3076d6aeac64f6289dabc02ae548b79
SHA1

3f251e8ace881e99279edb208cd8f25d33591f4a
SHA256

76ffb54d0016f607ccfdcbf269ca0c3c6d0703a9f1dc19a33a033796d5cc23a5
SHA512

7c518df0472a6bbfbbde50b2f7ea5a07d96fcdfb2de5289617eaec98ee0d08d6a07cf2abb0f6de2513d42d3b61dfc072fe5d4115cd31c3736559d4b9d2ba4efd
SSDEEP

384:iUDn4X4f0y4WEhbK8gZk/kZcBTD/JXMwmin9YuvO7YTOVA3F4:Tng40ZeWlGwz9/vOcTcAV4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  76ffb54d0016f607ccfdcbf269ca0c3c6d0703a9f1dc19a33a033796d5cc23a5
- Size
  
  30KB
- MD5
  
  d3076d6aeac64f6289dabc02ae548b79
- SHA1
  
  3f251e8ace881e99279edb208cd8f25d33591f4a
- SHA256
  
  76ffb54d0016f607ccfdcbf269ca0c3c6d0703a9f1dc19a33a033796d5cc23a5
- SHA512
  
  7c518df0472a6bbfbbde50b2f7ea5a07d96fcdfb2de5289617eaec98ee0d08d6a07cf2abb0f6de2513d42d3b61dfc072fe5d4115cd31c3736559d4b9d2ba4efd
- SSDEEP
  
  384:iUDn4X4f0y4WEhbK8gZk/kZcBTD/JXMwmin9YuvO7YTOVA3F4:Tng40ZeWlGwz9/vOcTcAV4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2