fd5290ff5969a0521898ced0b24e9d6aef30b5ef29c9f2fa4d7613cec395b7d3 | Triage

Sharing

General

Target

fd5290ff5969a0521898ced0b24e9d6aef30b5ef29c9f2fa4d7613cec395b7d3
Size

25KB
Sample

240904-nrah9s1apg
MD5

841802b0bd0c6c52013040cce321c7d7
SHA1

708ec384628a77aaa93c8b0a478e08e04876989d
SHA256

fd5290ff5969a0521898ced0b24e9d6aef30b5ef29c9f2fa4d7613cec395b7d3
SHA512

12a6e762326ed342318fb53079bb67d322b0fe1c513e4495b15e45498cfb82322def9f99d84695937db4520308074456514d41d0ea5fa1c868fa290e03168ed4
SSDEEP

384:6dsKewgzkVTF0VDRT3qcg666666666RJ70uIabjbt3TUA7DneAFABqJdMwp8XhPl:JKe7zUTWVlTVV0uIaOoDewfd3uhzp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fd5290ff5969a0521898ced0b24e9d6aef30b5ef29c9f2fa4d7613cec395b7d3
- Size
  
  25KB
- MD5
  
  841802b0bd0c6c52013040cce321c7d7
- SHA1
  
  708ec384628a77aaa93c8b0a478e08e04876989d
- SHA256
  
  fd5290ff5969a0521898ced0b24e9d6aef30b5ef29c9f2fa4d7613cec395b7d3
- SHA512
  
  12a6e762326ed342318fb53079bb67d322b0fe1c513e4495b15e45498cfb82322def9f99d84695937db4520308074456514d41d0ea5fa1c868fa290e03168ed4
- SSDEEP
  
  384:6dsKewgzkVTF0VDRT3qcg666666666RJ70uIabjbt3TUA7DneAFABqJdMwp8XhPl:JKe7zUTWVlTVV0uIaOoDewfd3uhzp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2