b982f874cace61378e09dc290f18ef1f0796103516a1b3d8ea7017a95a8f0588 | Triage

Sharing

General

Target

bdebddd9d1304655d271e44a0f66e0c0N.exe
Size

390KB
Sample

240817-3v8b2atgld
MD5

bdebddd9d1304655d271e44a0f66e0c0
SHA1

36c7d89b3935a8c71c83cd1ccdd0fa562096b837
SHA256

b982f874cace61378e09dc290f18ef1f0796103516a1b3d8ea7017a95a8f0588
SHA512

a494e0a260bf98b10b6e6ee1a7fd36e91ee986d36b2301467671bbd5c548caf7cadddfd11ff928e66e74b3bd4d91fb292dfcd61414efa77a68ea8f81019c6558
SSDEEP

6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRZ:nnOflT/ZFIjBz3xjTxynGUOUhXRZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bdebddd9d1304655d271e44a0f66e0c0N.exe
- Size
  
  390KB
- MD5
  
  bdebddd9d1304655d271e44a0f66e0c0
- SHA1
  
  36c7d89b3935a8c71c83cd1ccdd0fa562096b837
- SHA256
  
  b982f874cace61378e09dc290f18ef1f0796103516a1b3d8ea7017a95a8f0588
- SHA512
  
  a494e0a260bf98b10b6e6ee1a7fd36e91ee986d36b2301467671bbd5c548caf7cadddfd11ff928e66e74b3bd4d91fb292dfcd61414efa77a68ea8f81019c6558
- SSDEEP
  
  6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRZ:nnOflT/ZFIjBz3xjTxynGUOUhXRZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2