dee55a777ccde9a962b6a3aefde3d4e4d0d36fa028c77df65c888dc984e643a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e6f65d7ece31934bff3768af33dab00N.exe
Size

485KB
Sample

240817-vwszqsxcjg
MD5

8e6f65d7ece31934bff3768af33dab00
SHA1

7a38c7e7eae901f37b7f761430a9340d478f661c
SHA256

dee55a777ccde9a962b6a3aefde3d4e4d0d36fa028c77df65c888dc984e643a9
SHA512

8bcf2f529e6618f3a149c7406a40d0402cf982a97c11a1a79b912bfdcaa2606e9cd48692174d7cdfca02cc20590b1c1887ae7d3e8ebe1003003cefaa35858cdd
SSDEEP

12288:T4A+AUTpldpbKSb8l52Qyvj5yMUaSv/DLO4A37z3wa362UnNuI55JPB0b+g:8A+AUTpldpbba5kv8MUaSzLO/3PwfNN2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8e6f65d7ece31934bff3768af33dab00N.exe
- Size
  
  485KB
- MD5
  
  8e6f65d7ece31934bff3768af33dab00
- SHA1
  
  7a38c7e7eae901f37b7f761430a9340d478f661c
- SHA256
  
  dee55a777ccde9a962b6a3aefde3d4e4d0d36fa028c77df65c888dc984e643a9
- SHA512
  
  8bcf2f529e6618f3a149c7406a40d0402cf982a97c11a1a79b912bfdcaa2606e9cd48692174d7cdfca02cc20590b1c1887ae7d3e8ebe1003003cefaa35858cdd
- SSDEEP
  
  12288:T4A+AUTpldpbKSb8l52Qyvj5yMUaSv/DLO4A37z3wa362UnNuI55JPB0b+g:8A+AUTpldpbba5kv8MUaSzLO/3PwfNN2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2