ca7fe859dc89cae5bd225ab7f2f94baf696fc17cac54efcb31879e0f06248d8b | Triage

Sharing

General

Target

d72041e5c88e3a292d642e22ad1fe8f0N.exe
Size

114KB
Sample

240902-phanca1bqd
MD5

d72041e5c88e3a292d642e22ad1fe8f0
SHA1

08e6314a184aaee99bd34fbacb7f6c0c49d91f33
SHA256

ca7fe859dc89cae5bd225ab7f2f94baf696fc17cac54efcb31879e0f06248d8b
SHA512

bc34e4f2f9d3795a4dcef2a971ae74d9a221cce55c761aa8f87eba034d32df3fc93c96041d0863bf2640b78aced672ec11d3d4b37b0ea83d3e82acd0059a78c5
SSDEEP

384:OPP1svHMbR4PRdixlu09HNqmbYpjZHgzix0MFbJWC5sP6iM:OPP1dbfbUgziPbh5sPK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d72041e5c88e3a292d642e22ad1fe8f0N.exe
- Size
  
  114KB
- MD5
  
  d72041e5c88e3a292d642e22ad1fe8f0
- SHA1
  
  08e6314a184aaee99bd34fbacb7f6c0c49d91f33
- SHA256
  
  ca7fe859dc89cae5bd225ab7f2f94baf696fc17cac54efcb31879e0f06248d8b
- SHA512
  
  bc34e4f2f9d3795a4dcef2a971ae74d9a221cce55c761aa8f87eba034d32df3fc93c96041d0863bf2640b78aced672ec11d3d4b37b0ea83d3e82acd0059a78c5
- SSDEEP
  
  384:OPP1svHMbR4PRdixlu09HNqmbYpjZHgzix0MFbJWC5sP6iM:OPP1dbfbUgziPbh5sPK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2