e7e8a720d61246617f207fc1d526cc02bdaee80a2edf8fa47725908650647289 | Triage

Sharing

General

Target

2493a1106394912af0c9d2ba70463030N.exe
Size

15KB
Sample

240821-twshjascmm
MD5

2493a1106394912af0c9d2ba70463030
SHA1

85557348b9c010959713d68f9415dd9988dcb9f5
SHA256

e7e8a720d61246617f207fc1d526cc02bdaee80a2edf8fa47725908650647289
SHA512

160309861c0faac008b3b149ac944e65a02f84862c475058252531054d609f384142179f5723e800d99e5336de40c9f4e8a29cb45bd01191097317ce198ff519
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlp:hDXWipuE+K3/SSHgxmlp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2493a1106394912af0c9d2ba70463030N.exe
- Size
  
  15KB
- MD5
  
  2493a1106394912af0c9d2ba70463030
- SHA1
  
  85557348b9c010959713d68f9415dd9988dcb9f5
- SHA256
  
  e7e8a720d61246617f207fc1d526cc02bdaee80a2edf8fa47725908650647289
- SHA512
  
  160309861c0faac008b3b149ac944e65a02f84862c475058252531054d609f384142179f5723e800d99e5336de40c9f4e8a29cb45bd01191097317ce198ff519
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlp:hDXWipuE+K3/SSHgxmlp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2