b21c8e9042b4d692d44cdb1e1352af48c0df11d6a07ce5238501b71a48c26627 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8287fa9b0327a26db783af7e9e61ada0N.exe
Size

85KB
Sample

240814-c2ys3azdrr
MD5

8287fa9b0327a26db783af7e9e61ada0
SHA1

a5c1b38a9056504a268d4eab849a4801895c55fb
SHA256

b21c8e9042b4d692d44cdb1e1352af48c0df11d6a07ce5238501b71a48c26627
SHA512

848247ac01ed40c7907cc44ce33c21fca8f90d6db2416750f1fc38e8df9dc64b15852fc30dd0e8a7afca71359471d1e66aaa437a28d152e9851ea3b7fa1dd3f6
SSDEEP

1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLJF4:sB+F8tfPN4yCDKDjvQQQtr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8287fa9b0327a26db783af7e9e61ada0N.exe
- Size
  
  85KB
- MD5
  
  8287fa9b0327a26db783af7e9e61ada0
- SHA1
  
  a5c1b38a9056504a268d4eab849a4801895c55fb
- SHA256
  
  b21c8e9042b4d692d44cdb1e1352af48c0df11d6a07ce5238501b71a48c26627
- SHA512
  
  848247ac01ed40c7907cc44ce33c21fca8f90d6db2416750f1fc38e8df9dc64b15852fc30dd0e8a7afca71359471d1e66aaa437a28d152e9851ea3b7fa1dd3f6
- SSDEEP
  
  1536:sB+FC9RntfWeoGiPyCHjKDjvQQQtUw2dfkoT/y2ZLJF4:sB+F8tfPN4yCDKDjvQQQtr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2