bddef8248f448cc5e3ad774f108f42f300717c3fbcc2d46f33d6a7b3cc3a2d5e | Triage

Sharing

General

Target

e3a394ec47abb5df379cc4171b61f3d0N.exe
Size

27KB
Sample

240818-gnyncssbjp
MD5

e3a394ec47abb5df379cc4171b61f3d0
SHA1

0891c283e1a6494d66370188c82207977f11c34d
SHA256

bddef8248f448cc5e3ad774f108f42f300717c3fbcc2d46f33d6a7b3cc3a2d5e
SHA512

e4febe45e4bf3e56643423b05353f4dc9146bc2358efe6172e2722ea396eb1eb5762c8d35cbf7bbdc7604ea92119a86e20efeb5d34e5f4be946bb843fe074a4e
SSDEEP

192:kWu2F9EYpmaAsiE/HiogbJgigbGgSgFIEhgbn6fBNYrBJgigbYdKEKQ:w2F9EYpD/L/DYPvPoLfCPyQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e3a394ec47abb5df379cc4171b61f3d0N.exe
- Size
  
  27KB
- MD5
  
  e3a394ec47abb5df379cc4171b61f3d0
- SHA1
  
  0891c283e1a6494d66370188c82207977f11c34d
- SHA256
  
  bddef8248f448cc5e3ad774f108f42f300717c3fbcc2d46f33d6a7b3cc3a2d5e
- SHA512
  
  e4febe45e4bf3e56643423b05353f4dc9146bc2358efe6172e2722ea396eb1eb5762c8d35cbf7bbdc7604ea92119a86e20efeb5d34e5f4be946bb843fe074a4e
- SSDEEP
  
  192:kWu2F9EYpmaAsiE/HiogbJgigbGgSgFIEhgbn6fBNYrBJgigbYdKEKQ:w2F9EYpD/L/DYPvPoLfCPyQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2