5c3da119c0588c870d49872a630fc4c42245cad1f82bb7b2f8d50926c3024af4 | Triage

Sharing

General

Target

7dd7190f83497758e3b7ca572c20b94b.zip
Size

10KB
Sample

240902-a3vrpawgjp
MD5

eef51b3e94a393584c42eb94264ba5e1
SHA1

b52b2729d0aadc56e0c4d67caa5a21783fcf66ea
SHA256

5c3da119c0588c870d49872a630fc4c42245cad1f82bb7b2f8d50926c3024af4
SHA512

e47c15cc08cf7c414dcb14f9b9f4a6b72baf415e90c78b87effc55468f8fde390c247c35f9d7a59cb731a68ec047bfdb188aa025d450f459c6696538b0409f18
SSDEEP

192:XhWcfljjw+Ixh5Gfztz9jHGtslpv/6YBB9XrVWI+qoUS2S0er:Xh9fljtIcBmt6vB9XrgkLVi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  29218d5569a596ca4f813ef84103d12233bf8ff3bd1daea861e1e08684e45714
- Size
  
  16KB
- MD5
  
  7dd7190f83497758e3b7ca572c20b94b
- SHA1
  
  bb9a93567d04e2df6365ba8f9f67044ba8941644
- SHA256
  
  29218d5569a596ca4f813ef84103d12233bf8ff3bd1daea861e1e08684e45714
- SHA512
  
  9398bf3decf0a6f899ada503069e060f03df682b43f4ac56830fed8e63056253d59f94648448076857a0163739d26218dd53b5298e8a52143aa6f2cee8017ea6
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8iNJ:hDXWipuE+K3/SSHgxm8iNJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2