914f22402da691475f777721d7ba13a09e40e19b71cc894b47b8d217c89b4f4f | Triage

Sharing

General

Target

914f22402da691475f777721d7ba13a09e40e19b71cc894b47b8d217c89b4f4fN
Size

35KB
Sample

240919-e8s79s1gmm
MD5

33ed02d0f33334f10f143853e3bc46b0
SHA1

76c244189644ad64a956d77af42a9474cc8faae5
SHA256

914f22402da691475f777721d7ba13a09e40e19b71cc894b47b8d217c89b4f4f
SHA512

d5a2cac7b004a4f3680a41c12d0d704b8f7eb7c8fc6dc5734ce914bc77de728395b7e4224fe88a325ba60014c5cd07e8429d4e4c45df04e260f711da7cd3bf7a
SSDEEP

768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB72:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2V

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  914f22402da691475f777721d7ba13a09e40e19b71cc894b47b8d217c89b4f4fN
- Size
  
  35KB
- MD5
  
  33ed02d0f33334f10f143853e3bc46b0
- SHA1
  
  76c244189644ad64a956d77af42a9474cc8faae5
- SHA256
  
  914f22402da691475f777721d7ba13a09e40e19b71cc894b47b8d217c89b4f4f
- SHA512
  
  d5a2cac7b004a4f3680a41c12d0d704b8f7eb7c8fc6dc5734ce914bc77de728395b7e4224fe88a325ba60014c5cd07e8429d4e4c45df04e260f711da7cd3bf7a
- SSDEEP
  
  768:nQv/YOZIgQtz8GEkT9oe2lxUCuY9m9e9tdEI2MyzNORQtOflIwoHNM2XBFV7WB72:Qv/pZIgQtz8GEkT9oe2lxUCHCetdEI2V
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2