a472e85d20b555086291d456c324d8d1b171fc39fddb5ef35e37fc2d55cf26c5 | Triage

Sharing

General

Target

b26ffab318f487f9bdd1bd162cf60030N.exe
Size

36KB
Sample

240822-pjr9sazark
MD5

b26ffab318f487f9bdd1bd162cf60030
SHA1

4206c5471b24bb32cfce85efc16335f6b6c7f35b
SHA256

a472e85d20b555086291d456c324d8d1b171fc39fddb5ef35e37fc2d55cf26c5
SHA512

d318304bbddb0fca96809adb8f123b1a0cc4f5e48bd531255b8d5517c69b4e73ba732c6a2b8d492c7327c109a4b68c8fe0afaa347f98f4c18e58c02a8e8295f3
SSDEEP

384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCLYz+z4GJfblRiAFojdIwMDQOiJMVun:yAHt0Vu5IrM44TlhZwKQFJOun

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b26ffab318f487f9bdd1bd162cf60030N.exe
- Size
  
  36KB
- MD5
  
  b26ffab318f487f9bdd1bd162cf60030
- SHA1
  
  4206c5471b24bb32cfce85efc16335f6b6c7f35b
- SHA256
  
  a472e85d20b555086291d456c324d8d1b171fc39fddb5ef35e37fc2d55cf26c5
- SHA512
  
  d318304bbddb0fca96809adb8f123b1a0cc4f5e48bd531255b8d5517c69b4e73ba732c6a2b8d492c7327c109a4b68c8fe0afaa347f98f4c18e58c02a8e8295f3
- SSDEEP
  
  384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCLYz+z4GJfblRiAFojdIwMDQOiJMVun:yAHt0Vu5IrM44TlhZwKQFJOun
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2