080ecb14d11ebe24c0adb3276a879cd6fcf8d1c8ba012bd26b44dfd65bf96876 | Triage

Sharing

General

Target

080ecb14d11ebe24c0adb3276a879cd6fcf8d1c8ba012bd26b44dfd65bf96876
Size

34KB
Sample

240809-w2havstfjm
MD5

170798031745e022c2ab69efa3dccd8e
SHA1

cfa524b83822034cbe4856029ee0316fc58145eb
SHA256

080ecb14d11ebe24c0adb3276a879cd6fcf8d1c8ba012bd26b44dfd65bf96876
SHA512

070f5da1d1e4eae7d24056a8af5acb65b65f4f4a17c28d3736417883b6e32a19e9577d4bcb126615d7cc66e33057d228f5e8c83ab36e1cc51641cd3094cf8496
SSDEEP

384:MApc8m4e0GvQak4JI341C0abnk6hJPuMc:MApQr0GvdFJI34qTk6hJPfc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  080ecb14d11ebe24c0adb3276a879cd6fcf8d1c8ba012bd26b44dfd65bf96876
- Size
  
  34KB
- MD5
  
  170798031745e022c2ab69efa3dccd8e
- SHA1
  
  cfa524b83822034cbe4856029ee0316fc58145eb
- SHA256
  
  080ecb14d11ebe24c0adb3276a879cd6fcf8d1c8ba012bd26b44dfd65bf96876
- SHA512
  
  070f5da1d1e4eae7d24056a8af5acb65b65f4f4a17c28d3736417883b6e32a19e9577d4bcb126615d7cc66e33057d228f5e8c83ab36e1cc51641cd3094cf8496
- SSDEEP
  
  384:MApc8m4e0GvQak4JI341C0abnk6hJPuMc:MApQr0GvdFJI34qTk6hJPfc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2