d81e1248fa5f82ae4e605b3c4f46f329db5801de3d3501682b2d949226bd5d73 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ba881ae35ec700335ec347e79ea11260N
Size

42KB
Sample

240912-f3jmbatara
MD5

ba881ae35ec700335ec347e79ea11260
SHA1

0d4ddeb8bfcea7b227d74b8847b79a81be3af46f
SHA256

d81e1248fa5f82ae4e605b3c4f46f329db5801de3d3501682b2d949226bd5d73
SHA512

f43d87f3dcd9186c2d636318ccbf5f8bb2161e0c9b41647a5eb0b6c66532360351b124d9c66ee8d6037ca35b1eaef0ead3af5c4b344b775005b53a65f9d2542c
SSDEEP

192:jEdMPnwR2bCL8KktnAs7lp1FHif+SjInE6rNr5TdWooAeXR/V49d444UefDSwEkB:jFPnwR2Ca1lpvH6dMtRe5/JKzmXuK3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba881ae35ec700335ec347e79ea11260N
- Size
  
  42KB
- MD5
  
  ba881ae35ec700335ec347e79ea11260
- SHA1
  
  0d4ddeb8bfcea7b227d74b8847b79a81be3af46f
- SHA256
  
  d81e1248fa5f82ae4e605b3c4f46f329db5801de3d3501682b2d949226bd5d73
- SHA512
  
  f43d87f3dcd9186c2d636318ccbf5f8bb2161e0c9b41647a5eb0b6c66532360351b124d9c66ee8d6037ca35b1eaef0ead3af5c4b344b775005b53a65f9d2542c
- SSDEEP
  
  192:jEdMPnwR2bCL8KktnAs7lp1FHif+SjInE6rNr5TdWooAeXR/V49d444UefDSwEkB:jFPnwR2Ca1lpvH6dMtRe5/JKzmXuK3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2