adb7935add7f70d61e250c4edf5dceeed3b6ce1904c94cbcbdb4fc1147e9c1d8 | Triage

Sharing

General

Target

9c1cb3a96c796caf8196e57094ea53b0N
Size

61KB
Sample

240913-3pqj2avhjp
MD5

9c1cb3a96c796caf8196e57094ea53b0
SHA1

83f50af99472906fbf5daa12cb723df7e3616991
SHA256

adb7935add7f70d61e250c4edf5dceeed3b6ce1904c94cbcbdb4fc1147e9c1d8
SHA512

b4d186114089b5065a0038fa4adc6f5ecb025e2bc8fc434fbf54f5f4a591b50823e2a4f178aa6f2c3fffe2408c6a8244e4161ef5480390c1406ffc5784625e3a
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As+F:MAaAJlzsh7pWezEPJB+Oo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9c1cb3a96c796caf8196e57094ea53b0N
- Size
  
  61KB
- MD5
  
  9c1cb3a96c796caf8196e57094ea53b0
- SHA1
  
  83f50af99472906fbf5daa12cb723df7e3616991
- SHA256
  
  adb7935add7f70d61e250c4edf5dceeed3b6ce1904c94cbcbdb4fc1147e9c1d8
- SHA512
  
  b4d186114089b5065a0038fa4adc6f5ecb025e2bc8fc434fbf54f5f4a591b50823e2a4f178aa6f2c3fffe2408c6a8244e4161ef5480390c1406ffc5784625e3a
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As+F:MAaAJlzsh7pWezEPJB+Oo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2