6bc2eea17e5d36592053c4f747c4ec3403320b0ffdb86b105adcaf173f344728 | Triage

Sharing

General

Target

ba9a29aed7278e2b7470cad8f3e962c0N
Size

36KB
Sample

240912-xvje1szdka
MD5

ba9a29aed7278e2b7470cad8f3e962c0
SHA1

5b8b66ca39189fe77ed2f2d121d5ff2ea269bfbe
SHA256

6bc2eea17e5d36592053c4f747c4ec3403320b0ffdb86b105adcaf173f344728
SHA512

9e36f194dd69334b6937540089bf7ae35ca8f8d5f8c8e2f5e02fed671b9c53d9dd7b2a3ce6072f3573280591c4be153c44ca2499adb092f0d9828e5897c51666
SSDEEP

384:MApc8m4e0GvQak4JI341C0abnk6hJPohjLmyGF:MApQr0GvdFJI34qTk6hJPoViX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba9a29aed7278e2b7470cad8f3e962c0N
- Size
  
  36KB
- MD5
  
  ba9a29aed7278e2b7470cad8f3e962c0
- SHA1
  
  5b8b66ca39189fe77ed2f2d121d5ff2ea269bfbe
- SHA256
  
  6bc2eea17e5d36592053c4f747c4ec3403320b0ffdb86b105adcaf173f344728
- SHA512
  
  9e36f194dd69334b6937540089bf7ae35ca8f8d5f8c8e2f5e02fed671b9c53d9dd7b2a3ce6072f3573280591c4be153c44ca2499adb092f0d9828e5897c51666
- SSDEEP
  
  384:MApc8m4e0GvQak4JI341C0abnk6hJPohjLmyGF:MApQr0GvdFJI34qTk6hJPoViX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2