d4bb9eb9bdedfa37f8b43e73c197bc12830239404de20ca6701c1460682bc283 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a628bc395e14e2d45b059cd7452f8900N
Size

34KB
Sample

240911-g57btswgnj
MD5

a628bc395e14e2d45b059cd7452f8900
SHA1

106dfa95f1405ef0f080943e0751887aea1009ed
SHA256

d4bb9eb9bdedfa37f8b43e73c197bc12830239404de20ca6701c1460682bc283
SHA512

1f1fc3e3e34e53f08109272fff5d15ad328a17e21843b949cd61adef4091cc791ca9510c4021e178452a79d8c056656e990f6d0feb7947b4c5d6308871add1dc
SSDEEP

768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB7Y:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2f

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a628bc395e14e2d45b059cd7452f8900N
- Size
  
  34KB
- MD5
  
  a628bc395e14e2d45b059cd7452f8900
- SHA1
  
  106dfa95f1405ef0f080943e0751887aea1009ed
- SHA256
  
  d4bb9eb9bdedfa37f8b43e73c197bc12830239404de20ca6701c1460682bc283
- SHA512
  
  1f1fc3e3e34e53f08109272fff5d15ad328a17e21843b949cd61adef4091cc791ca9510c4021e178452a79d8c056656e990f6d0feb7947b4c5d6308871add1dc
- SSDEEP
  
  768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB7Y:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2f
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2