e65c6f979cf7205f4e98830833afc5a2f6f5536f665741b65494d89a2cca5864 | Triage

Sharing

General

Target

e65c6f979cf7205f4e98830833afc5a2f6f5536f665741b65494d89a2cca5864
Size

4.0MB
Sample

240902-fvk56stdpg
MD5

11d3de43e44d5c8a662a8b666df7a4ac
SHA1

b9866c30c4535258975665bc238844e966559a61
SHA256

e65c6f979cf7205f4e98830833afc5a2f6f5536f665741b65494d89a2cca5864
SHA512

99ff05b2dee2f1d8538a23de6fc89fe46c14219e9738ea937dee52c5163688c54cda1f8e6f2b5596abb5d806989158a7c2b551d115d26bbcf6e138ff7c679e8d
SSDEEP

49152:g98E8uqWvhCcD0Tgy0LXu1qoTzmYvr6/TlVXeQqZUhh4r5VC9PI+Kt/KGD7:g9P1vkcD+v49pN/hwQqZUha5jtSu7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e65c6f979cf7205f4e98830833afc5a2f6f5536f665741b65494d89a2cca5864
- Size
  
  4.0MB
- MD5
  
  11d3de43e44d5c8a662a8b666df7a4ac
- SHA1
  
  b9866c30c4535258975665bc238844e966559a61
- SHA256
  
  e65c6f979cf7205f4e98830833afc5a2f6f5536f665741b65494d89a2cca5864
- SHA512
  
  99ff05b2dee2f1d8538a23de6fc89fe46c14219e9738ea937dee52c5163688c54cda1f8e6f2b5596abb5d806989158a7c2b551d115d26bbcf6e138ff7c679e8d
- SSDEEP
  
  49152:g98E8uqWvhCcD0Tgy0LXu1qoTzmYvr6/TlVXeQqZUhh4r5VC9PI+Kt/KGD7:g9P1vkcD+v49pN/hwQqZUha5jtSu7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2