f5454de6d5b6961bc2a7cd684ecda92adc27d510d8845d9e21b9f3659ee9e5e1 | Triage

Sharing

General

Target

9b81c08743680fb1110c010220bcc622.zip
Size

9KB
Sample

240903-p7l3nsyclc
MD5

94df7e41a7b807330536306c87fc7000
SHA1

6e413e51bda8d9c7bef8fef8185d861699d4076f
SHA256

f5454de6d5b6961bc2a7cd684ecda92adc27d510d8845d9e21b9f3659ee9e5e1
SHA512

0673b795353fc9caa99629669327e94820fb9575b0d3adb66c74b1625c3f7d941de62ae036e72e048501b4265c91e9b605622c921fc195a480be14e54ec7d881
SSDEEP

192:PRxMm6uoG/NTAMz8lA9amHk7yDqmwtJkUwELUWOPU4EjafZ16JfNPqZnWEA:PRx9JL/+Mz8lhmJqxwO3OPUljsq98BWv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0f5211519d8197a98fea6275c9191fc59673ee63e3ae5d13a178b50e6e84c13b
- Size
  
  14KB
- MD5
  
  9b81c08743680fb1110c010220bcc622
- SHA1
  
  8299cd0ea14352c190fc45bbb217fb37221bc671
- SHA256
  
  0f5211519d8197a98fea6275c9191fc59673ee63e3ae5d13a178b50e6e84c13b
- SHA512
  
  174128cf347d10b37af7943f89d631ed2d5262c1913262f8338a4a868a12e3c1f3bc7e7828cc1ff385e26eb01cfad7e07cb2645f718e933647f8f855ff593b94
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhvFBx:hDXWipuE+K3/SSHgxlFBx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2