d7419eca8f8c69a5f0f296e1cfaac8253b41708d52755161a0c739f8419213a8 | Triage

Sharing

General

Target

b04928d3c9ac3abaf0ff7cbeb6be9399.zip
Size

10KB
Sample

240901-brl6vaxbja
MD5

446e4b4356328e8efe69c4736a4eafae
SHA1

b2a3ebcd704b90148191756a9c003777ccca9952
SHA256

d7419eca8f8c69a5f0f296e1cfaac8253b41708d52755161a0c739f8419213a8
SHA512

a42300459bed9d47201dbc82f2ffe68504aa715a3969faaf51ab98bcd85fd8443368fbe2e5f25afadb157c8f38702aa4d9ae4e84e7486403d7dae07a1ff6ba79
SSDEEP

192:JY/H+nDJY+sYfC0J7jw8cN+bxuWgKhRkicWHunmQPhZCQCSvYoXplJP:JY/H+nV/bp7jw87DLk0e4RgXp3P

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4e068dc4a32148b532e213e5ed0dfae83a6020d6554be4ff65b31d4b2b478649
- Size
  
  16KB
- MD5
  
  b04928d3c9ac3abaf0ff7cbeb6be9399
- SHA1
  
  c3c85f5e37c370ea8b5d3cdfd6aea399b1a4fc0b
- SHA256
  
  4e068dc4a32148b532e213e5ed0dfae83a6020d6554be4ff65b31d4b2b478649
- SHA512
  
  697c5df22d5f9b62e8f1423b489520bbe3dad534364dfd46f570480568a85f4f7c33d784c67a051b40024410a20ebdb17e00a3876ea09ba80cbb7386d5e86e08
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlR:hDXWipuE+K3/SSHgxmlR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2