f9017da9bf07e1821c95ffabafb0ca8c36ffe3af3cd8a80ec3c9d6060b8d49df

Analysis

max time kernel
93s
max time network
96s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
02/09/2024, 19:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

delt.exe
Size

345KB
MD5

af97ea12970796db02d8755905cc56a0
SHA1

7a1fc3b84c1d431ef10e9d0b5f398a8e8b7fef3c
SHA256

f9017da9bf07e1821c95ffabafb0ca8c36ffe3af3cd8a80ec3c9d6060b8d49df
SHA512

c9d8be9f5fa2ecee7a946554264d9dee0be2c36fb565cc62dc430dab1d83892865b3975390ce37483f96876ff3b16161fbd21d18f72c7b78db94836e0912e693
SSDEEP

6144:0VYIbMos9I7CVYIbMos9I70lP0Uf7eJNHgVYIbMos9I75VYIbMos9I7:0VYIoos9I7CVYIoos9I7cVYIoos9I75d

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	delt.exe

C:\Users\Admin\AppData\Local\Temp\delt.exe
"C:\Users\Admin\AppData\Local\Temp\delt.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:4620

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads