99363f2e3501a957a8f3f3705ba861e157441d644c7b3971a6f8afce7f88a6a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

99363f2e3501a957a8f3f3705ba861e157441d644c7b3971a6f8afce7f88a6a9
Size

26KB
Sample

240914-afvheawfrp
MD5

4d12d5bbd670a754f1a99a9cb13614e1
SHA1

4c9904a2c5dfe6fe1c52afbc9e0fdca2e33e641b
SHA256

99363f2e3501a957a8f3f3705ba861e157441d644c7b3971a6f8afce7f88a6a9
SHA512

d5f92c6220528b9c9f95302bf27408f9544711d56b2620eba6e4f508889cbf26db3367b55a477632c1c1964fa084290287515a2016807e1b9d4a737f21511c60
SSDEEP

384:0l6d+tqqDRhG15xvnxWOFwIqMV468UneYeZ:0s+oohCx8aqMVcYeZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  99363f2e3501a957a8f3f3705ba861e157441d644c7b3971a6f8afce7f88a6a9
- Size
  
  26KB
- MD5
  
  4d12d5bbd670a754f1a99a9cb13614e1
- SHA1
  
  4c9904a2c5dfe6fe1c52afbc9e0fdca2e33e641b
- SHA256
  
  99363f2e3501a957a8f3f3705ba861e157441d644c7b3971a6f8afce7f88a6a9
- SHA512
  
  d5f92c6220528b9c9f95302bf27408f9544711d56b2620eba6e4f508889cbf26db3367b55a477632c1c1964fa084290287515a2016807e1b9d4a737f21511c60
- SSDEEP
  
  384:0l6d+tqqDRhG15xvnxWOFwIqMV468UneYeZ:0s+oohCx8aqMVcYeZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2