13d56a267f37b4734bb426e5c1a58da371087680c4044530f931d10859ac6c68 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98cbfe6dde97c5c3ac7bba78d28f0bc0N
Size

41KB
Sample

240907-z5crbsyare
MD5

98cbfe6dde97c5c3ac7bba78d28f0bc0
SHA1

9284c14fd03075d39caefcc7c90da173712ec0ea
SHA256

13d56a267f37b4734bb426e5c1a58da371087680c4044530f931d10859ac6c68
SHA512

a6fd1bacb86a945760a7c51dfcec9792103ca9aacfa6200f6971b18ea7b84e2e3e193b88ec049950719ef1ac6f8a02fd71361c7321732016e06001fa74d94385
SSDEEP

768:G26uYRQRSm8/mjHgetHHz5fl2MOF3h1R8kL:GVrRLveLgqnv2MYzR1L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  98cbfe6dde97c5c3ac7bba78d28f0bc0N
- Size
  
  41KB
- MD5
  
  98cbfe6dde97c5c3ac7bba78d28f0bc0
- SHA1
  
  9284c14fd03075d39caefcc7c90da173712ec0ea
- SHA256
  
  13d56a267f37b4734bb426e5c1a58da371087680c4044530f931d10859ac6c68
- SHA512
  
  a6fd1bacb86a945760a7c51dfcec9792103ca9aacfa6200f6971b18ea7b84e2e3e193b88ec049950719ef1ac6f8a02fd71361c7321732016e06001fa74d94385
- SSDEEP
  
  768:G26uYRQRSm8/mjHgetHHz5fl2MOF3h1R8kL:GVrRLveLgqnv2MYzR1L
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2