0b60251d62fb405d2db469d2bb102e97a70cf058840b79ed3ad5388320b3e4eb | Triage

Sharing

General

Target

0b60251d62fb405d2db469d2bb102e97a70cf058840b79ed3ad5388320b3e4eb
Size

60KB
Sample

240825-w8xzwszdrp
MD5

5f9f9b993f862af695b72b02afbf3528
SHA1

dc893946e10a4d6270d9be4b4ae9df618a5cbed7
SHA256

0b60251d62fb405d2db469d2bb102e97a70cf058840b79ed3ad5388320b3e4eb
SHA512

4d5107fe8edbd1fc749e9ab4aa3449a53b7f2d065bd6da348709dafce5cf8c5e2ecdc6422a8fa6fe8a67e65c2d715b6323b18d1822f11581604b77f034b5e144
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Asp:MAaAJlzsh7pWezEPJB+OR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0b60251d62fb405d2db469d2bb102e97a70cf058840b79ed3ad5388320b3e4eb
- Size
  
  60KB
- MD5
  
  5f9f9b993f862af695b72b02afbf3528
- SHA1
  
  dc893946e10a4d6270d9be4b4ae9df618a5cbed7
- SHA256
  
  0b60251d62fb405d2db469d2bb102e97a70cf058840b79ed3ad5388320b3e4eb
- SHA512
  
  4d5107fe8edbd1fc749e9ab4aa3449a53b7f2d065bd6da348709dafce5cf8c5e2ecdc6422a8fa6fe8a67e65c2d715b6323b18d1822f11581604b77f034b5e144
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7Asp:MAaAJlzsh7pWezEPJB+OR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2