d0ce16dd77c260098132c5302a52b40c322b156e44486be42440f283bb52dfc9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

db1f1e3d55d473d92ebf9fc2f9538730N.exe
Size

42KB
Sample

240814-ejwbbsweng
MD5

db1f1e3d55d473d92ebf9fc2f9538730
SHA1

bf209f8e0c08c555f6d2b230e09ea1dc7569b1fe
SHA256

d0ce16dd77c260098132c5302a52b40c322b156e44486be42440f283bb52dfc9
SHA512

4313805ecb171701eed5dc0956a584ae8673a0586a3a3db5d9ef7b8e72999b879347af68b6c3abb1e85a148bf48b8e3146443bf75d7348afa860a6c5b069caab
SSDEEP

768:swg9aYfQkXdmCdMimsENm4QctL4yM2F4hUm6:sR0QQwndcsE0vSMXz6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  db1f1e3d55d473d92ebf9fc2f9538730N.exe
- Size
  
  42KB
- MD5
  
  db1f1e3d55d473d92ebf9fc2f9538730
- SHA1
  
  bf209f8e0c08c555f6d2b230e09ea1dc7569b1fe
- SHA256
  
  d0ce16dd77c260098132c5302a52b40c322b156e44486be42440f283bb52dfc9
- SHA512
  
  4313805ecb171701eed5dc0956a584ae8673a0586a3a3db5d9ef7b8e72999b879347af68b6c3abb1e85a148bf48b8e3146443bf75d7348afa860a6c5b069caab
- SSDEEP
  
  768:swg9aYfQkXdmCdMimsENm4QctL4yM2F4hUm6:sR0QQwndcsE0vSMXz6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2