644171c76fe39439070a3dc561e7665099f25de7f2e309c0039fb067c6f03479 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac70dc50438fec75dcd67f0f2c9d4e10N
Size

43KB
Sample

240914-dnjyesvcka
MD5

ac70dc50438fec75dcd67f0f2c9d4e10
SHA1

fd5c60ad35788fd664e3fab50d45a3268019fb45
SHA256

644171c76fe39439070a3dc561e7665099f25de7f2e309c0039fb067c6f03479
SHA512

c47179cf29ef077017c9f7120aa0b7b823ee0fbf7782ddafc8efb46c83786e85d40afe844e8c5039df5781d41e90241749a33a055d5aacac7b0ae7e873499204
SSDEEP

768:YFNy3B1T5CN/zoystsVN6ITo+wTkRS8Txw:my/90zo+gIUA9O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ac70dc50438fec75dcd67f0f2c9d4e10N
- Size
  
  43KB
- MD5
  
  ac70dc50438fec75dcd67f0f2c9d4e10
- SHA1
  
  fd5c60ad35788fd664e3fab50d45a3268019fb45
- SHA256
  
  644171c76fe39439070a3dc561e7665099f25de7f2e309c0039fb067c6f03479
- SHA512
  
  c47179cf29ef077017c9f7120aa0b7b823ee0fbf7782ddafc8efb46c83786e85d40afe844e8c5039df5781d41e90241749a33a055d5aacac7b0ae7e873499204
- SSDEEP
  
  768:YFNy3B1T5CN/zoystsVN6ITo+wTkRS8Txw:my/90zo+gIUA9O
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2