a336fa6b8f4ed976d9558605dd9e2f2e568d7ab34e6b04c626cde9617b93c0b3 | Triage

Sharing

General

Target

6f1b9a3c933f6effef76d8fdce9c12f0N.exe
Size

33KB
Sample

240822-tpg38awdrg
MD5

6f1b9a3c933f6effef76d8fdce9c12f0
SHA1

19ade1b3672c03362deb82d133783af0997b6ee2
SHA256

a336fa6b8f4ed976d9558605dd9e2f2e568d7ab34e6b04c626cde9617b93c0b3
SHA512

9d066ce1a4cca2bda289365eed6ce6d211f9ac5a4867fcda247ac779f1b69d8385cc3a08537344590804c467e55dba42aa52944b79e981b8af8dedc9de73b758
SSDEEP

192:CnuPSSRT/K36yFBvarOeJ1bKSAf7AlC+1lj8a1KVVVflkxIY9M6Qh/Ke0uc4W+xA:CU+fyyQ1KS0AC+1l91KldNAcZc1ncOVn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6f1b9a3c933f6effef76d8fdce9c12f0N.exe
- Size
  
  33KB
- MD5
  
  6f1b9a3c933f6effef76d8fdce9c12f0
- SHA1
  
  19ade1b3672c03362deb82d133783af0997b6ee2
- SHA256
  
  a336fa6b8f4ed976d9558605dd9e2f2e568d7ab34e6b04c626cde9617b93c0b3
- SHA512
  
  9d066ce1a4cca2bda289365eed6ce6d211f9ac5a4867fcda247ac779f1b69d8385cc3a08537344590804c467e55dba42aa52944b79e981b8af8dedc9de73b758
- SSDEEP
  
  192:CnuPSSRT/K36yFBvarOeJ1bKSAf7AlC+1lj8a1KVVVflkxIY9M6Qh/Ke0uc4W+xA:CU+fyyQ1KS0AC+1l91KldNAcZc1ncOVn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2