115a26f15e50fb2b977785b0e735593e022c7c5471d5618e6c5ab5c362d0e711 | Triage

Sharing

General

Target

016ecdb9876c5124ed326acaebcf76c7.zip
Size

10KB
Sample

240903-v7l1katbph
MD5

986522a5243ccded0aa0764b44c01921
SHA1

fe2510e4344db85b1433baa3791cab8afe919989
SHA256

115a26f15e50fb2b977785b0e735593e022c7c5471d5618e6c5ab5c362d0e711
SHA512

f8f90096e91fdcb681254343867bd6dd7e1d2b03607c3e7c4783688df2afef5f2931cbe706ff8ea616851cd635f88a737903b8b4f7561e13f23837e8b654d234
SSDEEP

192:A+g8KvwXAmztlNTLYo4oHbgoj1aI7rmnnmYJAkzWGpm0ecHhYSg/kAFTCFyV:A+gB94tl1LkQbx0I6mYJAom0eOhUcAFx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f1a00c1e40ad694911babba52eae58de8404b654c7897ff9e176b1e179881097
- Size
  
  16KB
- MD5
  
  016ecdb9876c5124ed326acaebcf76c7
- SHA1
  
  866ceda0b453db4587f2d9e167ab6218462ca21d
- SHA256
  
  f1a00c1e40ad694911babba52eae58de8404b654c7897ff9e176b1e179881097
- SHA512
  
  e489c83ce455c93039be37d873c87a650847f0c635a65cf984d9b177a7898c787200d3c3f5a4621097604b234ce34fa8817fac795fd6b0f2a9d5161493e80aed
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYld:hDXWipuE+K3/SSHgxmld
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2