b4fa640fdcf458fb0b3a3aef66225bcc581e8be3b5538aad4341cd8b51e7c111 | Triage

Resubmissions

07/09/2024, 19:30

240907-x73pestaqg 7

07/09/2024, 19:29

240907-x7hn9a1ajn 7

Sharing

General

Target

9d14d45b1c7ff364f29da917b355bd70N
Size

9KB
Sample

240907-x7hn9a1ajn
MD5

9d14d45b1c7ff364f29da917b355bd70
SHA1

8e90c2f79fd5e5eb12ff9230936e6c91c449bd9b
SHA256

b4fa640fdcf458fb0b3a3aef66225bcc581e8be3b5538aad4341cd8b51e7c111
SHA512

aa89d9629e3cf4779f07dd368b4741a91a975ad82d0b5190020bce2ad72ff48f92f2ab4c548c2c1b5ac37d5b4ab47cb3f879f887851b61e83bc034d515167c44
SSDEEP

96:zb+u4l46fPl6C8w/Z3cy4cfnp35veaiUgCsGZkM6m2As1c4SYgXuN4yYjgAYX:WHO6V6CXZSYp0aiZCpc1ZSYgXu2fjmX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9d14d45b1c7ff364f29da917b355bd70N
- Size
  
  9KB
- MD5
  
  9d14d45b1c7ff364f29da917b355bd70
- SHA1
  
  8e90c2f79fd5e5eb12ff9230936e6c91c449bd9b
- SHA256
  
  b4fa640fdcf458fb0b3a3aef66225bcc581e8be3b5538aad4341cd8b51e7c111
- SHA512
  
  aa89d9629e3cf4779f07dd368b4741a91a975ad82d0b5190020bce2ad72ff48f92f2ab4c548c2c1b5ac37d5b4ab47cb3f879f887851b61e83bc034d515167c44
- SSDEEP
  
  96:zb+u4l46fPl6C8w/Z3cy4cfnp35veaiUgCsGZkM6m2As1c4SYgXuN4yYjgAYX:WHO6V6CXZSYp0aiZCpc1ZSYgXu2fjmX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2