8a1bfbc22006c9c49579fb9e101c4a5fb75c071b13b05a743aa28e4541976461 | Triage

Sharing

General

Target

3551037b428548213f880ee755ca2390N.exe
Size

422KB
Sample

240904-qwb9rs1ckn
MD5

3551037b428548213f880ee755ca2390
SHA1

559ac9a2afd252e1e42c29d329272ab44cd889e8
SHA256

8a1bfbc22006c9c49579fb9e101c4a5fb75c071b13b05a743aa28e4541976461
SHA512

e310e2d2f969902ae7dd4746dab6c72ae7b86684334c903d70660a45fdfcefb178ceec491f17cb9d7aaf9813b35e71d5c425ef2e3277eb26c31af920c783feee
SSDEEP

3072:AYLf3GqW1ywnfwdiEu6+7UPToMVsPARgW/TCD5uSYzZPXQKlU2k7HoZ7WK7TxqNo:AirW1n4d//PTJOYRgsTxFxU27WGYhRnC

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  3551037b428548213f880ee755ca2390N.exe
- Size
  
  422KB
- MD5
  
  3551037b428548213f880ee755ca2390
- SHA1
  
  559ac9a2afd252e1e42c29d329272ab44cd889e8
- SHA256
  
  8a1bfbc22006c9c49579fb9e101c4a5fb75c071b13b05a743aa28e4541976461
- SHA512
  
  e310e2d2f969902ae7dd4746dab6c72ae7b86684334c903d70660a45fdfcefb178ceec491f17cb9d7aaf9813b35e71d5c425ef2e3277eb26c31af920c783feee
- SSDEEP
  
  3072:AYLf3GqW1ywnfwdiEu6+7UPToMVsPARgW/TCD5uSYzZPXQKlU2k7HoZ7WK7TxqNo:AirW1n4d//PTJOYRgsTxFxU27WGYhRnC
Score

6^/10

discovery
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2