71a0aeacfab5550e2ff53bb8797d311cbec8a9dbb8875f38d790d61376d53b20 | Triage

Sharing

General

Target

344ea4d11e708ebfc928ac4fedf20d20N.exe
Size

33KB
Sample

240820-3efxvasenr
MD5

344ea4d11e708ebfc928ac4fedf20d20
SHA1

4af573038697a5fedafb00bb7210a693b3e4f8ea
SHA256

71a0aeacfab5550e2ff53bb8797d311cbec8a9dbb8875f38d790d61376d53b20
SHA512

fb0e7f93aabb9416e5fc14e091a7f5480982aed358e703a4c51f05ab267fda6d076be2c71e792fe968f1907d564ddcccff11c1297ec668169f44b5684ee617b6
SSDEEP

768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB7s:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  344ea4d11e708ebfc928ac4fedf20d20N.exe
- Size
  
  33KB
- MD5
  
  344ea4d11e708ebfc928ac4fedf20d20
- SHA1
  
  4af573038697a5fedafb00bb7210a693b3e4f8ea
- SHA256
  
  71a0aeacfab5550e2ff53bb8797d311cbec8a9dbb8875f38d790d61376d53b20
- SHA512
  
  fb0e7f93aabb9416e5fc14e091a7f5480982aed358e703a4c51f05ab267fda6d076be2c71e792fe968f1907d564ddcccff11c1297ec668169f44b5684ee617b6
- SSDEEP
  
  768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB7s:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2L
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2