759c103a1996737d5447ebc15bd89b6aeeeb3c4f3526822e02b3626e3f70a8c3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

759c103a1996737d5447ebc15bd89b6aeeeb3c4f3526822e02b3626e3f70a8c3.exe
Size

206KB
Sample

240914-bz2lhazfkk
MD5

a7116c4e4990b70511c577532946db34
SHA1

ececd5574acb320ce183341b27f887e46df0b274
SHA256

759c103a1996737d5447ebc15bd89b6aeeeb3c4f3526822e02b3626e3f70a8c3
SHA512

47146a7314768551e49e7b1c55b3e20674c75274a2216d69a8651ad771100d619e8c85a2c97710d7f7fb753e13ab0a4b8d30b33f504f35f24ead4e51caa08521
SSDEEP

3072:hagdEByMuZJ/+oNbynzrVCd/e39IjqwBSArDrvD3bOOwsg0ui9:hUByrr+oyzro4UDrvXOOwsgzi9

Score

7^/10

discovery execution

Malware Config

Targets

- Target
  
  759c103a1996737d5447ebc15bd89b6aeeeb3c4f3526822e02b3626e3f70a8c3.exe
- Size
  
  206KB
- MD5
  
  a7116c4e4990b70511c577532946db34
- SHA1
  
  ececd5574acb320ce183341b27f887e46df0b274
- SHA256
  
  759c103a1996737d5447ebc15bd89b6aeeeb3c4f3526822e02b3626e3f70a8c3
- SHA512
  
  47146a7314768551e49e7b1c55b3e20674c75274a2216d69a8651ad771100d619e8c85a2c97710d7f7fb753e13ab0a4b8d30b33f504f35f24ead4e51caa08521
- SSDEEP
  
  3072:hagdEByMuZJ/+oNbynzrVCd/e39IjqwBSArDrvD3bOOwsg0ui9:hUByrr+oyzro4UDrvXOOwsgzi9
Score

7^/10

discovery execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

PowerShell

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecution

behavioral2

discoveryexecution