519d0f180787160012c380b2be352281c0adffe2dfbaa3855633680e35c01b32 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6ac27aa3dacf2a5c77d81283512e4d20N
Size

88KB
Sample

240914-ma8t3azard
MD5

6ac27aa3dacf2a5c77d81283512e4d20
SHA1

cd81db5e12742dd842c735d154b9d937c16feb85
SHA256

519d0f180787160012c380b2be352281c0adffe2dfbaa3855633680e35c01b32
SHA512

c2bd0dbda6530a5fe692357f8972aad236f7540220ea705018d962a81ed1c75b80b239e4f03d663c6c89a06e537bbf8f98e1d1b047ef782119029f7fca4ae765
SSDEEP

1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zNj:IGjot7UQLtdgI2MyzNORQtOflIwoHNVu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6ac27aa3dacf2a5c77d81283512e4d20N
- Size
  
  88KB
- MD5
  
  6ac27aa3dacf2a5c77d81283512e4d20
- SHA1
  
  cd81db5e12742dd842c735d154b9d937c16feb85
- SHA256
  
  519d0f180787160012c380b2be352281c0adffe2dfbaa3855633680e35c01b32
- SHA512
  
  c2bd0dbda6530a5fe692357f8972aad236f7540220ea705018d962a81ed1c75b80b239e4f03d663c6c89a06e537bbf8f98e1d1b047ef782119029f7fca4ae765
- SSDEEP
  
  1536:IGsBuoFn7UZ+LtdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsbI8zNj:IGjot7UQLtdgI2MyzNORQtOflIwoHNVu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2