a25c159e5490e188472c8de5090c0e6405035fbd4c779f082416d956b51e6d76 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1538c8aa418c7804503bbe348964bd17.zip
Size

10KB
Sample

240903-dwg4ssxbpg
MD5

4ed5c4800227acc7177a47f370fbbde7
SHA1

3ff264d3b71df70b218d678fdb46c37bf7f4adbb
SHA256

a25c159e5490e188472c8de5090c0e6405035fbd4c779f082416d956b51e6d76
SHA512

9cb385bea24a3732f97a5461fc73b89309d39a01977a183daacbf5a4b7c04e01e6bba89e1644e604f4759be0d38dd2b14fc36b5d8e2668afe8c5c0b65b680371
SSDEEP

192:HmfgE63Mo3uCbyPcaVjF/R95TKmjeHD9st+aW+IV/lzVaK36w74xb4sngbxW0+:Hmf56cGu1jF/R95e8WNzVaK3JizgbxWR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  afe5c92712596de223b1e331e87937d41f12ab42b4f76c360622bf071b69e2a3
- Size
  
  15KB
- MD5
  
  1538c8aa418c7804503bbe348964bd17
- SHA1
  
  fa98e1167fabb15c6ab8baaa0b822ef98270b028
- SHA256
  
  afe5c92712596de223b1e331e87937d41f12ab42b4f76c360622bf071b69e2a3
- SHA512
  
  7715f9a57ccd1d7c2bc2bf3ff65b55f157d8de67baa8c30ddaa94660fc057a078665adb4e0d92bc4df81868d470eca480640e95f037b4d3af7b4df13ca2aeed1
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRl5e:hDXWipuE+K3/SSHgxXe
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2