b452a00b0efa9aaa19d652d3ae095771570674b6310712ec28fca66a6becb490 | Triage

Sharing

General

Target

bcfbebe1a2c1e773b77256a0c28eb360N
Size

61KB
Sample

240909-h4e2mawhnm
MD5

bcfbebe1a2c1e773b77256a0c28eb360
SHA1

66bbfa1a447c6ea8cdda468a421007fbca37afef
SHA256

b452a00b0efa9aaa19d652d3ae095771570674b6310712ec28fca66a6becb490
SHA512

7ab689b69406779db1a68b6a3427c99930ee280bd5f2d7a432c0d65f53beb34f647f8ca37c2aa77663d77b23362b34e0286468bbd3f9b4a26bb7a79e1fe279dc
SSDEEP

384:PsjPGY2HXgrk8YhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlRufmC9T:PePG5H8+hKD8ISZQjkgs1lxlRAmCJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bcfbebe1a2c1e773b77256a0c28eb360N
- Size
  
  61KB
- MD5
  
  bcfbebe1a2c1e773b77256a0c28eb360
- SHA1
  
  66bbfa1a447c6ea8cdda468a421007fbca37afef
- SHA256
  
  b452a00b0efa9aaa19d652d3ae095771570674b6310712ec28fca66a6becb490
- SHA512
  
  7ab689b69406779db1a68b6a3427c99930ee280bd5f2d7a432c0d65f53beb34f647f8ca37c2aa77663d77b23362b34e0286468bbd3f9b4a26bb7a79e1fe279dc
- SSDEEP
  
  384:PsjPGY2HXgrk8YhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlRufmC9T:PePG5H8+hKD8ISZQjkgs1lxlRAmCJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2