4ae772419ca874ea6b9236bf1aeffc7c1995ecea20e68bfe222a09e16884ed89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4ae772419ca874ea6b9236bf1aeffc7c1995ecea20e68bfe222a09e16884ed89
Size

10KB
Sample

240902-1d2rtayera
MD5

bd939ae3784d5668bbaebf190ac3e24c
SHA1

b9548f8b373b827650733594585f2d071f3b2b00
SHA256

4ae772419ca874ea6b9236bf1aeffc7c1995ecea20e68bfe222a09e16884ed89
SHA512

4a2763780d08e174055d0b0b38b5dcaeed36c60efeeb8a115d8de6ec05c8f9942fb4f816e57ec08eeb93cfc0f45690e17c359eab71447909efb3f90f74e9a35c
SSDEEP

192:S4MbbNIv9+nK/4G5nnn3Bc1h3cTH/QYVqVQMEam:6Iv4K/4excLAHFVqVQMg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4ae772419ca874ea6b9236bf1aeffc7c1995ecea20e68bfe222a09e16884ed89
- Size
  
  10KB
- MD5
  
  bd939ae3784d5668bbaebf190ac3e24c
- SHA1
  
  b9548f8b373b827650733594585f2d071f3b2b00
- SHA256
  
  4ae772419ca874ea6b9236bf1aeffc7c1995ecea20e68bfe222a09e16884ed89
- SHA512
  
  4a2763780d08e174055d0b0b38b5dcaeed36c60efeeb8a115d8de6ec05c8f9942fb4f816e57ec08eeb93cfc0f45690e17c359eab71447909efb3f90f74e9a35c
- SSDEEP
  
  192:S4MbbNIv9+nK/4G5nnn3Bc1h3cTH/QYVqVQMEam:6Iv4K/4excLAHFVqVQMg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2