c34be1a480ca2474118cbe10b626bd006896e79ad99b5e2a90a5d2db09f78a49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c34be1a480ca2474118cbe10b626bd006896e79ad99b5e2a90a5d2db09f78a49
Size

1.7MB
Sample

240817-xjw7qs1dld
MD5

bdc539c6056ca1e6f6f0427f44591b1a
SHA1

21782cb7b77d566593168e091c91fc87394e592f
SHA256

c34be1a480ca2474118cbe10b626bd006896e79ad99b5e2a90a5d2db09f78a49
SHA512

efcda65ea1ceb72765549d43f5fe2aade4f15b56d4eed1d0ca58df5454cc8da2c1b7d7f296730a221b087ad18acf4f4bd53fda6ec1f407f5c68b68fde353fc10
SSDEEP

49152:k1hZXvtRv/rMkht4ByZWfCd+NWdpxt4/O5vU:ehB7/3t4ByB6WjH8OC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c34be1a480ca2474118cbe10b626bd006896e79ad99b5e2a90a5d2db09f78a49
- Size
  
  1.7MB
- MD5
  
  bdc539c6056ca1e6f6f0427f44591b1a
- SHA1
  
  21782cb7b77d566593168e091c91fc87394e592f
- SHA256
  
  c34be1a480ca2474118cbe10b626bd006896e79ad99b5e2a90a5d2db09f78a49
- SHA512
  
  efcda65ea1ceb72765549d43f5fe2aade4f15b56d4eed1d0ca58df5454cc8da2c1b7d7f296730a221b087ad18acf4f4bd53fda6ec1f407f5c68b68fde353fc10
- SSDEEP
  
  49152:k1hZXvtRv/rMkht4ByZWfCd+NWdpxt4/O5vU:ehB7/3t4ByB6WjH8OC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2