Analysis
-
max time kernel
149s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
12-08-2024 16:47
Behavioral task
behavioral1
Sample
baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7.exe
Resource
win10v2004-20240802-en
General
-
Target
baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7.exe
-
Size
483KB
-
MD5
2700f6cfde6913836b974dea28c36ea0
-
SHA1
fdf890d33b58c69f259298e6c42a61b3f6d6425e
-
SHA256
baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7
-
SHA512
21d2ad601c0f10497e25a16ddb01618248f86944aed3cdbc1c878e9091601a7075b2cf229466a3b82ecfc7225fae00a6d7caa2502d010f85ded6acf42da19ff6
-
SSDEEP
6144:WXIktXfM8Lv86r9uVWAa2je4Z5zl4hgDHQQs4NTQjoHFsAOZZDAXYcNn5Gv:WX7tPMK8ctGe4Dzl4h2QnuPs/ZD6cv
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7.exedescription ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language baad4005fb863b9598108dc202ceb8a5d70f36214ea004400ac82a3aa5328dc7.exe