eeb5313a6292c74ad96666397f1d5b77d3da2539e90e52ab8c2f595728d74973 | Triage

Sharing

General

Target

eeb5313a6292c74ad96666397f1d5b77d3da2539e90e52ab8c2f595728d74973
Size

47KB
Sample

240919-dql6kaxhka
MD5

d58b68f6fc2fb7c604b0e4baaae3c72b
SHA1

a818a23aac7a7dd8985cd8d4ad71b4fd80ecae7f
SHA256

eeb5313a6292c74ad96666397f1d5b77d3da2539e90e52ab8c2f595728d74973
SHA512

9233da239e22f0813e068a8c306258402a79afdcac32acbe0dd26ff91c4aaaa4ba10f06de0363c0f7812649ca53fecdb9b2796f2bdfb6a3eb54c4ff112d0cf32
SSDEEP

768:CnnOWEvtPvkFk58sCu84euZR5FbrGePc/3FttKAezzq:CnOtvtPf58k8GtBSXtKA9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eeb5313a6292c74ad96666397f1d5b77d3da2539e90e52ab8c2f595728d74973
- Size
  
  47KB
- MD5
  
  d58b68f6fc2fb7c604b0e4baaae3c72b
- SHA1
  
  a818a23aac7a7dd8985cd8d4ad71b4fd80ecae7f
- SHA256
  
  eeb5313a6292c74ad96666397f1d5b77d3da2539e90e52ab8c2f595728d74973
- SHA512
  
  9233da239e22f0813e068a8c306258402a79afdcac32acbe0dd26ff91c4aaaa4ba10f06de0363c0f7812649ca53fecdb9b2796f2bdfb6a3eb54c4ff112d0cf32
- SSDEEP
  
  768:CnnOWEvtPvkFk58sCu84euZR5FbrGePc/3FttKAezzq:CnOtvtPf58k8GtBSXtKA9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2