367e9b9930d752f381af0fcdabc5ea35e63ce6de973be89e0417cc7b7fbca253 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

367e9b9930d752f381af0fcdabc5ea35e63ce6de973be89e0417cc7b7fbca253
Size

22KB
Sample

240823-ye3pdsvdrm
MD5

03084e7eaabef000da64857f8fd58f65
SHA1

ef934e7ac18775da27c97d8f2c05e71a4ea74e9b
SHA256

367e9b9930d752f381af0fcdabc5ea35e63ce6de973be89e0417cc7b7fbca253
SHA512

3a861974a32f6f4d01f6cd631b27de000c9546310c5e2495fd6dedb7cc77ed6fd6cbf561b41889426fee3dbbef897889448c59393933e727611a88a19c4b6e49
SSDEEP

384:5OD5u+XgNQJbF+gKkAKHDwiwhaGYpjN68wbmkK:IVu+XgNKYVsDxwhaG8ZwykK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  367e9b9930d752f381af0fcdabc5ea35e63ce6de973be89e0417cc7b7fbca253
- Size
  
  22KB
- MD5
  
  03084e7eaabef000da64857f8fd58f65
- SHA1
  
  ef934e7ac18775da27c97d8f2c05e71a4ea74e9b
- SHA256
  
  367e9b9930d752f381af0fcdabc5ea35e63ce6de973be89e0417cc7b7fbca253
- SHA512
  
  3a861974a32f6f4d01f6cd631b27de000c9546310c5e2495fd6dedb7cc77ed6fd6cbf561b41889426fee3dbbef897889448c59393933e727611a88a19c4b6e49
- SSDEEP
  
  384:5OD5u+XgNQJbF+gKkAKHDwiwhaGYpjN68wbmkK:IVu+XgNKYVsDxwhaG8ZwykK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2