753f629bd520d59f0d8dac8345476f8b25e8c89584d31581b16e02cc8ce6d39b | Triage

Sharing

General

Target

19f0a7095c3dcfc5d776a7518113d2eb.zip
Size

11KB
Sample

240901-syv6rsvgmh
MD5

63b16c5eaa24445fc47d232cfbbb4b11
SHA1

4d73476d1a23e2f575f30d8b184b9750d12316fc
SHA256

753f629bd520d59f0d8dac8345476f8b25e8c89584d31581b16e02cc8ce6d39b
SHA512

a9033b3cc40f1ff14c44ef7b0d30d666eeac298ce161458f4ebbd9d3bddf90e050948260598ab63208208f6ec3172a732e8d640dff2bb7e63425cba934d2347f
SSDEEP

192:oLsg5TA5Xsx0n+mCE6eeCTFD2vP+dpAoscna7cBIuz9Q0wukIyrCa+CYlZtplTFi:ogg5TA+W+hEjFK2fsca4ic9Q09kDj+CP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0a6590df2a6d46c2423bc155437e64a1e80d2dc1a450e95ce14d41198194a928
- Size
  
  20KB
- MD5
  
  19f0a7095c3dcfc5d776a7518113d2eb
- SHA1
  
  e49d51110cbec2d2fe254de87488345643bff4aa
- SHA256
  
  0a6590df2a6d46c2423bc155437e64a1e80d2dc1a450e95ce14d41198194a928
- SHA512
  
  e0e937e1ba0e211a3f4f1be5f2266646f790ed513624cf3476a684c78cc0d6764bed564de3a9bc981fc9074c28cc1d55f9cc21a8f0e255137b9e58709e980828
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L41qv:hDXWipuE+K3/SSHgxmHZ1+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2