9fe295fdfa15c7570195c1992b15d6a105c9ab0819276f9c766f1f6096ed10fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a066a8f236b44b38a9e23d6f796d98eb.zip
Size

9KB
Sample

240901-b3gqhaxhjc
MD5

bb4487559b57c4bbdf2983531c2526ef
SHA1

a34d8905761e050249376a231bd41f027a1f1587
SHA256

9fe295fdfa15c7570195c1992b15d6a105c9ab0819276f9c766f1f6096ed10fa
SHA512

866a889de2e279d7e3be55b212de6539eab280b3700aab7f2f75aec6b32d0e13f11d92042be96dd66d747558c7d8c0696d0c6ceca9fbf0a96449511cd61aa501
SSDEEP

192:OEeijpIjW5d1Z55kJJZ/7LZFDd6bMd+sZQltj+x34BItViQeoKoe:jpIjWDs/JaMdPGI34B2i/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0c45067d94526e72e1fa730e30af0087786907c192485b85c24145611dadb7fc
- Size
  
  16KB
- MD5
  
  a066a8f236b44b38a9e23d6f796d98eb
- SHA1
  
  67005a2e988bacfd007e30b89d9123b12734a22b
- SHA256
  
  0c45067d94526e72e1fa730e30af0087786907c192485b85c24145611dadb7fc
- SHA512
  
  a2da61ea1aa217297821c7b4d85a7c1c5ae73667456f0944da5a430eb51d680e6d14a7a6e39f0a5bfd14908921fb6b7debf47a21b45d7aa4476e6b525cbafee6
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY0FM:hDXWipuE+K3/SSHgxm0O
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2