25f23205a396306168857698c897053866d7c93781b58a68881304a05ca42b2a | Triage

Sharing

General

Target

25f23205a396306168857698c897053866d7c93781b58a68881304a05ca42b2a
Size

21KB
Sample

240825-yq3tjatdnk
MD5

317e639a5d2fd614dc5a357b816499a0
SHA1

f92c2da2f3861ec26890d3638af4dfd8ce73bdb0
SHA256

25f23205a396306168857698c897053866d7c93781b58a68881304a05ca42b2a
SHA512

bfe9ac390f3b5a7be587cff703ebd191e16fa0d3c315f3553135d9d00f4273ac0af967f277eeef4975fe20fc01099a1cba9cd97cd6a22516051c6cddfedc990f
SSDEEP

192:RmHMqjoQewsETX0o1byouOlOx/+1qAGgYpVAdDWLkqQdAlPTCjmT:ReMigwsEo6Ze+N5Ypy6QdOd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  25f23205a396306168857698c897053866d7c93781b58a68881304a05ca42b2a
- Size
  
  21KB
- MD5
  
  317e639a5d2fd614dc5a357b816499a0
- SHA1
  
  f92c2da2f3861ec26890d3638af4dfd8ce73bdb0
- SHA256
  
  25f23205a396306168857698c897053866d7c93781b58a68881304a05ca42b2a
- SHA512
  
  bfe9ac390f3b5a7be587cff703ebd191e16fa0d3c315f3553135d9d00f4273ac0af967f277eeef4975fe20fc01099a1cba9cd97cd6a22516051c6cddfedc990f
- SSDEEP
  
  192:RmHMqjoQewsETX0o1byouOlOx/+1qAGgYpVAdDWLkqQdAlPTCjmT:ReMigwsEo6Ze+N5Ypy6QdOd
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2