ad4153be596862a083e34d8c76f4333ad5f6d5f5b9c7e1d013e16b218e6ded1d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22ed05321524116f39704bb3112caa30N.exe
Size

4.7MB
Sample

240824-s1cgfawhrf
MD5

22ed05321524116f39704bb3112caa30
SHA1

b27f186a4eab8565f35ad01879fa69da21b956ec
SHA256

ad4153be596862a083e34d8c76f4333ad5f6d5f5b9c7e1d013e16b218e6ded1d
SHA512

643d6b5cd5128c1ef47e9123ff5ee9fa94d024258164d39b77aa03d408d4f1266c197869399a78122d08c26125daac2333f2505514ad87f67328a0fce9c4e244
SSDEEP

49152:j4db2ZjeUNZZH46LL6dZ4g6ZN8JUU4+fIPhTPYaY4:i6eUNZZJ36X4gkoUZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  22ed05321524116f39704bb3112caa30N.exe
- Size
  
  4.7MB
- MD5
  
  22ed05321524116f39704bb3112caa30
- SHA1
  
  b27f186a4eab8565f35ad01879fa69da21b956ec
- SHA256
  
  ad4153be596862a083e34d8c76f4333ad5f6d5f5b9c7e1d013e16b218e6ded1d
- SHA512
  
  643d6b5cd5128c1ef47e9123ff5ee9fa94d024258164d39b77aa03d408d4f1266c197869399a78122d08c26125daac2333f2505514ad87f67328a0fce9c4e244
- SSDEEP
  
  49152:j4db2ZjeUNZZH46LL6dZ4g6ZN8JUU4+fIPhTPYaY4:i6eUNZZJ36X4gkoUZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2