f63390d8a7c47295bfe5ec980bf05e45f5267e223d3c1d4ded153e8c348e68ee | Triage

Sharing

General

Target

9e46230c789b8a09fcac100c09cb3582.zip
Size

9KB
Sample

240903-zp1s8awhmj
MD5

9d4389a4592b1eda307643abb167e263
SHA1

5ea18722b3dbcbccc920001c5d1a52c5cf006038
SHA256

f63390d8a7c47295bfe5ec980bf05e45f5267e223d3c1d4ded153e8c348e68ee
SHA512

03c1149f96c135fb23d9bb9230d9ece77970b3316cd51e54aef49152a382b70060998c60cbe07316f33e564a103d24c9aef26251e56e8285cd8159f28521b88b
SSDEEP

192:AnKicxHzLdkTQUXEwtRjc0hullBnOgBxZP+cV2AWnWRyFObAzbfgGJRZqC:U6LqTQUXEsNc0hEBOyxZ2c7WnWvUrgGp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d72e82a9bbbb97a0dc79a669c2f0e1e0b9ec7d6fb2bb2e71056fdf7e07d223c2
- Size
  
  16KB
- MD5
  
  9e46230c789b8a09fcac100c09cb3582
- SHA1
  
  75665fb2aa80eb940ce9d6f51e23fa9c38e34a38
- SHA256
  
  d72e82a9bbbb97a0dc79a669c2f0e1e0b9ec7d6fb2bb2e71056fdf7e07d223c2
- SHA512
  
  bbf6232f1981e255e27c40e9b554dd2f4801b89180bd0fed16a53a74546814cc4ae2d0af95ce8cda3d28b9b0121184ecc983eb8f7213c339ba04c66bb96fe667
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYETPq:hDXWipuE+K3/SSHgxmOy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2