f167ddf3a7b651967def259b50ee97ec076415530cc72143dc4412fcc69ab194 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75089602406c80e98a7d25e078231540N.exe
Size

32KB
Sample

240820-gpydzszgrj
MD5

75089602406c80e98a7d25e078231540
SHA1

5bbd65ff8882f93e90156d319388a54a4f1fa06c
SHA256

f167ddf3a7b651967def259b50ee97ec076415530cc72143dc4412fcc69ab194
SHA512

b89b466f9e45299c57f0413351c4957abb71b8838bb6dc55769f20d05318346573183409ca29f6c91d39f30296c25f472f1086bfa37af18152d6fbb6ec1ffb87
SSDEEP

768:gWFtq/S5ITXT5PZ3Hzpu9fWWq53E7YS9VXm:lq656PJpu9fWWq53Y9VXm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  75089602406c80e98a7d25e078231540N.exe
- Size
  
  32KB
- MD5
  
  75089602406c80e98a7d25e078231540
- SHA1
  
  5bbd65ff8882f93e90156d319388a54a4f1fa06c
- SHA256
  
  f167ddf3a7b651967def259b50ee97ec076415530cc72143dc4412fcc69ab194
- SHA512
  
  b89b466f9e45299c57f0413351c4957abb71b8838bb6dc55769f20d05318346573183409ca29f6c91d39f30296c25f472f1086bfa37af18152d6fbb6ec1ffb87
- SSDEEP
  
  768:gWFtq/S5ITXT5PZ3Hzpu9fWWq53E7YS9VXm:lq656PJpu9fWWq53Y9VXm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2