a3605942387f75c9d9ed140f3a43ce73b5df605069ce405d10678b666777b08d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3605942387f75c9d9ed140f3a43ce73b5df605069ce405d10678b666777b08d
Size

42KB
Sample

240829-bq89zswgna
MD5

8d875dd0ca6406a9c1119087dd7dfce1
SHA1

9323a57b769c02b76dfad9e8d75fbdec1558e5e5
SHA256

a3605942387f75c9d9ed140f3a43ce73b5df605069ce405d10678b666777b08d
SHA512

6465b8bc7f54b9aa55df142e54584262ba0c9c92be3faf6e8bd348f56ff40251f7645125d30f0e2c53a16982e2d23735e03ded0e97b3a5983302aa8988125cf2
SSDEEP

384:H0NqwaXklRRvZxMR5QYKZseH5eAXZkbXSm10cz2TFUaMPbaDqcRM+ll4uPLS1Wy8:H0NqwbTzQDKVeA2bhpaPDqcRkwo8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3605942387f75c9d9ed140f3a43ce73b5df605069ce405d10678b666777b08d
- Size
  
  42KB
- MD5
  
  8d875dd0ca6406a9c1119087dd7dfce1
- SHA1
  
  9323a57b769c02b76dfad9e8d75fbdec1558e5e5
- SHA256
  
  a3605942387f75c9d9ed140f3a43ce73b5df605069ce405d10678b666777b08d
- SHA512
  
  6465b8bc7f54b9aa55df142e54584262ba0c9c92be3faf6e8bd348f56ff40251f7645125d30f0e2c53a16982e2d23735e03ded0e97b3a5983302aa8988125cf2
- SSDEEP
  
  384:H0NqwaXklRRvZxMR5QYKZseH5eAXZkbXSm10cz2TFUaMPbaDqcRM+ll4uPLS1Wy8:H0NqwbTzQDKVeA2bhpaPDqcRkwo8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2