57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac

Analysis

max time kernel
123s
max time network
126s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
19-08-2024 09:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac.exe
Size

15.3MB
MD5

1153106b6e6c4f8fe9ef406b97ef80cd
SHA1

07df9169b4734155a51be32b78bfcc2047f8e2ca
SHA256

57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac
SHA512

20baa87c7f32e27c825df573ca31d7137d0d9932efc144be85883b481a7a142903d4b326dbb681965c93de1fbb215afdbf7c5ccd1102bca0d3e83c604eb592e2
SSDEEP

196608:8U/at1RyiaLcEYf44RO1foZBkTApeEKj:0tmsEYAj1QZiAYh

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac.exe

C:\Users\Admin\AppData\Local\Temp\57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac.exe
"C:\Users\Admin\AppData\Local\Temp\57a82fe7dfdb4ca34aa53a757eadaaad85bfb0aa8cd06f615630696658fd22ac.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:1772

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads