9fc5e249f14354ad4575efba3815234d4113117b897e3249b4952da35a731f57 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9fc5e249f14354ad4575efba3815234d4113117b897e3249b4952da35a731f57.exe
Size

28.3MB
Sample

240915-bstbjsybmk
MD5

e02b82904c22e79f36519409f8d24051
SHA1

5cbf06e0de7b249a677cbde15ee436891fcb3e10
SHA256

9fc5e249f14354ad4575efba3815234d4113117b897e3249b4952da35a731f57
SHA512

da7ff686fc1d27c7a2d7fc9524827ad676c699de41e14fb2e4a239e27287389f79485865bf2a4819f2c1fa3238d69cdd9d0ca96bab9ab9f816f0d73b510b9e5c
SSDEEP

786432:hsdpUZfUacoQ9rOMgLtYPIsIkcIfxRnx96NsqBgPfxV:hsdpkkoeONaIs9vnxMNsvPfxV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9fc5e249f14354ad4575efba3815234d4113117b897e3249b4952da35a731f57.exe
- Size
  
  28.3MB
- MD5
  
  e02b82904c22e79f36519409f8d24051
- SHA1
  
  5cbf06e0de7b249a677cbde15ee436891fcb3e10
- SHA256
  
  9fc5e249f14354ad4575efba3815234d4113117b897e3249b4952da35a731f57
- SHA512
  
  da7ff686fc1d27c7a2d7fc9524827ad676c699de41e14fb2e4a239e27287389f79485865bf2a4819f2c1fa3238d69cdd9d0ca96bab9ab9f816f0d73b510b9e5c
- SSDEEP
  
  786432:hsdpUZfUacoQ9rOMgLtYPIsIkcIfxRnx96NsqBgPfxV:hsdpkkoeONaIs9vnxMNsvPfxV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2