8593a03da338e8114d4f922cf217bb3a8095d41a76ac102d86f85ac51f899b14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87d0ba8c85c508f12d4867fa10f38104.zip
Size

11KB
Sample

240903-av3sbsshnc
MD5

238c0abab7a29c1a609e3b0a2ea7e90c
SHA1

f963418697e1d41cc31a0411b00f6872cf36b35a
SHA256

8593a03da338e8114d4f922cf217bb3a8095d41a76ac102d86f85ac51f899b14
SHA512

61eec57cf21fe6ab684df6a6b68764cb3d1a025347dabab3abaefdd0bacc97bd8873cab9d2ea7a92fec961ce7a0da6e303ad586f127f21069241e8320480afa5
SSDEEP

192:X47VlQQPgb607v3ldKAdKgdnOu6/KKnERdAFTErQAKjKzxfskdsCuxfCfXd8Gfye:IRlQQ4D/lzxqKKnERdMErVoY53Zuxfru

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2f210456af4be5de42eb49df41c224cb842d6ee02ce3514e90c9a717ed994683
- Size
  
  20KB
- MD5
  
  87d0ba8c85c508f12d4867fa10f38104
- SHA1
  
  967da1074cd2824db3eb0b8b3d4c138b0296c514
- SHA256
  
  2f210456af4be5de42eb49df41c224cb842d6ee02ce3514e90c9a717ed994683
- SHA512
  
  d34c622bda615f0b25be6b7b8dba575b243be1a58d0f2096b546342461eaf956d412fddebb78411247e49fb24e0f3d412bc4192539ad5ef1df3655c6ac48bc6c
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxh:hDXWipuE+K3/SSHgxmH7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2