311d0e55fba64bd1410bea4f9d7259fef811c76b530f7e966a1a5d43d248fa89 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7ec95bc625883e2ab780e9cd5bef290N
Size

30KB
Sample

240912-162mhsydne
MD5

e7ec95bc625883e2ab780e9cd5bef290
SHA1

49626d92ca8bd51e8937ab0281359440fcbe2169
SHA256

311d0e55fba64bd1410bea4f9d7259fef811c76b530f7e966a1a5d43d248fa89
SHA512

16910472274fbbf580c20a8cc6522b57347c4ac50216751c0b0e3e6d085046233e5105e57379db3d907137b1ead46860d4c054e641677288e8216bcfb4192275
SSDEEP

768:TmvHfYggggggLvggggggggUaocNoknj3+Y:TsIoIbnz7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e7ec95bc625883e2ab780e9cd5bef290N
- Size
  
  30KB
- MD5
  
  e7ec95bc625883e2ab780e9cd5bef290
- SHA1
  
  49626d92ca8bd51e8937ab0281359440fcbe2169
- SHA256
  
  311d0e55fba64bd1410bea4f9d7259fef811c76b530f7e966a1a5d43d248fa89
- SHA512
  
  16910472274fbbf580c20a8cc6522b57347c4ac50216751c0b0e3e6d085046233e5105e57379db3d907137b1ead46860d4c054e641677288e8216bcfb4192275
- SSDEEP
  
  768:TmvHfYggggggLvggggggggUaocNoknj3+Y:TsIoIbnz7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2