f989c0d25393992d0daa4e86c2b383693faff306e393c306481a8a6b9e494f61 | Triage

Sharing

General

Target

b3731894255607438c3df56731a7d6b0N.exe
Size

46KB
Sample

240902-jaj9xswena
MD5

b3731894255607438c3df56731a7d6b0
SHA1

779fc6c3aad330278ff496aaf2b8198f15dc5348
SHA256

f989c0d25393992d0daa4e86c2b383693faff306e393c306481a8a6b9e494f61
SHA512

201e52d5514b8be37053895b62af1c63af018a28c87e2b11c6daf72b61b70c9226b0ec2c8ab01335af6df535fbc3ad2b072ec24b32fa9a8927bab4e3c7e9b241
SSDEEP

384:KK+fKfzsqud1lubAK0s2y5V9yGQRSVnWLglNcNNnLyLpywfu:f+fAQqud1lKAKmy5ne+9lWNNnLyLpZfu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b3731894255607438c3df56731a7d6b0N.exe
- Size
  
  46KB
- MD5
  
  b3731894255607438c3df56731a7d6b0
- SHA1
  
  779fc6c3aad330278ff496aaf2b8198f15dc5348
- SHA256
  
  f989c0d25393992d0daa4e86c2b383693faff306e393c306481a8a6b9e494f61
- SHA512
  
  201e52d5514b8be37053895b62af1c63af018a28c87e2b11c6daf72b61b70c9226b0ec2c8ab01335af6df535fbc3ad2b072ec24b32fa9a8927bab4e3c7e9b241
- SSDEEP
  
  384:KK+fKfzsqud1lubAK0s2y5V9yGQRSVnWLglNcNNnLyLpywfu:f+fAQqud1lKAKmy5ne+9lWNNnLyLpZfu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2