7de10250f2427c8b6f70558600034a3edc39ebc5829c31496efdf313c73f0e34 | Triage

Sharing

General

Target

7c58ed3ec40b9640da0426a8ec30efe5.zip
Size

10KB
Sample

240903-g4ev7a1blb
MD5

b91814ab5cec5ff58526a587ec6391b0
SHA1

5acb7625c051eb0cd2c0c353e132b09632e31363
SHA256

7de10250f2427c8b6f70558600034a3edc39ebc5829c31496efdf313c73f0e34
SHA512

81d1353550e65a4a6eaca8b4e5b32ef1ed0518e892d71b8fb3b4232463876f0ff2def83bdf93c4681d901ecafbaf86979cc009509e746051280c2037433754ff
SSDEEP

192:v1SdSWvv7Q4WcIL8nFA4Em9iISPVwooW0YGc5US3tSsA7TiXmjLWs3U2fITKz5Xw:9VjEi1PISPVla4TQ7/Fk2AWz1oCul

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5761b48a873f44d6eb34916f429536e24a7f955f8a81ce006f93a863c1f8e7df
- Size
  
  15KB
- MD5
  
  7c58ed3ec40b9640da0426a8ec30efe5
- SHA1
  
  6d2b6b57e9ac6674e0ef5e98cee9fe0e54d9bd2b
- SHA256
  
  5761b48a873f44d6eb34916f429536e24a7f955f8a81ce006f93a863c1f8e7df
- SHA512
  
  78794b13879b2ce14042587d884b4a8765767de06587cdc5a979b11df00ac94ac8a0fe1b172ba5ad2f99390e5ca5f46ab91c56f2c33a5f2662d389505122c3b7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhhid:hDXWipuE+K3/SSHgxLid
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2