5b566a4ac57bade01d169533617255afccc251bd0bf942a9a0663e8a20d249ae | Triage

Sharing

General

Target

e4bd4a28ed88f1fbfdfd0089d036cb30N
Size

46KB
Sample

240908-kczytswblk
MD5

e4bd4a28ed88f1fbfdfd0089d036cb30
SHA1

657f3868362d4b0e7f27a06a825b08817cca09c1
SHA256

5b566a4ac57bade01d169533617255afccc251bd0bf942a9a0663e8a20d249ae
SHA512

e93dc8bac575b90258f285189854f64ec67577eeb53f3e60b95c83c6818938a9b824e49dc0919252d3cf9805f32104c8a487cda01eb7711cc8108e32892cf319
SSDEEP

768:MApQr0ovdFJI34eGxusOy9Rp1pLeAxoeC48PqK1aSMW:MAaDJlMsh7pWez+MW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e4bd4a28ed88f1fbfdfd0089d036cb30N
- Size
  
  46KB
- MD5
  
  e4bd4a28ed88f1fbfdfd0089d036cb30
- SHA1
  
  657f3868362d4b0e7f27a06a825b08817cca09c1
- SHA256
  
  5b566a4ac57bade01d169533617255afccc251bd0bf942a9a0663e8a20d249ae
- SHA512
  
  e93dc8bac575b90258f285189854f64ec67577eeb53f3e60b95c83c6818938a9b824e49dc0919252d3cf9805f32104c8a487cda01eb7711cc8108e32892cf319
- SSDEEP
  
  768:MApQr0ovdFJI34eGxusOy9Rp1pLeAxoeC48PqK1aSMW:MAaDJlMsh7pWez+MW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2