b170f80f04e9eb364f7f0a33a9e95de4bb4f27cca155e31eadf21ed9e2ddb246 | Triage

Sharing

General

Target

2840c8fa8a4e14faf99976fc8dcfb770N.exe
Size

32KB
Sample

240824-pynvxazhph
MD5

2840c8fa8a4e14faf99976fc8dcfb770
SHA1

0ea88c77da44462efc157c8a524bb3ce6b37879c
SHA256

b170f80f04e9eb364f7f0a33a9e95de4bb4f27cca155e31eadf21ed9e2ddb246
SHA512

16c8ea5ef93d5336fb479580625eede25ff2c02d23d3286ed421dce6749c0f65d0fc9fc965496fa0f68d0a1635226f5a5a0a2a55a6495e0ff21b2503f9b5c99c
SSDEEP

768:6B7HBXFw82t2C80lyaZ4jX05RfX5XciJr480tcW:u7HZFwzlyaZTSi+80tcW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2840c8fa8a4e14faf99976fc8dcfb770N.exe
- Size
  
  32KB
- MD5
  
  2840c8fa8a4e14faf99976fc8dcfb770
- SHA1
  
  0ea88c77da44462efc157c8a524bb3ce6b37879c
- SHA256
  
  b170f80f04e9eb364f7f0a33a9e95de4bb4f27cca155e31eadf21ed9e2ddb246
- SHA512
  
  16c8ea5ef93d5336fb479580625eede25ff2c02d23d3286ed421dce6749c0f65d0fc9fc965496fa0f68d0a1635226f5a5a0a2a55a6495e0ff21b2503f9b5c99c
- SSDEEP
  
  768:6B7HBXFw82t2C80lyaZ4jX05RfX5XciJr480tcW:u7HZFwzlyaZTSi+80tcW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2