52e9ef286e075eb5ee300d8fced2255546c8c81e90360a13a8b0ea5cb503503d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

449769a18f975df3ad5e6aedb4b4337d.zip
Size

12KB
Sample

240903-f7h7cazbnc
MD5

d047b8dec4907b6566bba474310a5df7
SHA1

d559bb4139b2a61958a3f16a53d6a8b2c02befa6
SHA256

52e9ef286e075eb5ee300d8fced2255546c8c81e90360a13a8b0ea5cb503503d
SHA512

2216bdad8e4215319da14a2841b1a239a3d5ee09071cdd0ef1693f9e19fad012de980a957a612d93817046d2a27adf08b0f56b9444a7af3528e043fa1a9225f2
SSDEEP

384:faAtwmKqFRoA3MP4HQ44lcokvcFz7AMvMon:HtwmKKR3nQ4I/F7NvHn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  530f361cf82f92c5806ef4ebcd1fbf3bda92cddde090a4679de02c9f7c4a81a5
- Size
  
  16KB
- MD5
  
  449769a18f975df3ad5e6aedb4b4337d
- SHA1
  
  1fe55ea9aec10467ac64196d8906a5359e65df20
- SHA256
  
  530f361cf82f92c5806ef4ebcd1fbf3bda92cddde090a4679de02c9f7c4a81a5
- SHA512
  
  57e8cb8cc7841180bb6c84f7aa1e33f5d8e39b6f5ebd02bba0049f4b7d4e29b7099dc2a0ddb725dcf6d3d2a2a4decb350a1972aeb56e515fbc19c52eaa3f0bff
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L47nPi7:hDXWipuE+K3/SSHgxmHZbo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2