e258b380e179bfbd05afaad75f4e192fa17edf4babbba42e75cfc5f66cc1596a | Triage

Sharing

General

Target

e258b380e179bfbd05afaad75f4e192fa17edf4babbba42e75cfc5f66cc1596aN
Size

35KB
Sample

240919-ebezdazaje
MD5

4f4170df3e56bf1e584958b8a192d060
SHA1

25f576d8a022756ff498acd77282636555b10975
SHA256

e258b380e179bfbd05afaad75f4e192fa17edf4babbba42e75cfc5f66cc1596a
SHA512

360d7b4a6cf9f9b06d6f4cc1d537e9bc6ef0fca2025286046b395911bb0317c94d1c69934b008195752cf1c3c1d12002ec57c7b9d92c0c442beb82c12eb3cc09
SSDEEP

384:MApc8m4e0GvQak4JI341C0abnk6hJPuM2DO:MApQr0GvdFJI34qTk6hJPfD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e258b380e179bfbd05afaad75f4e192fa17edf4babbba42e75cfc5f66cc1596aN
- Size
  
  35KB
- MD5
  
  4f4170df3e56bf1e584958b8a192d060
- SHA1
  
  25f576d8a022756ff498acd77282636555b10975
- SHA256
  
  e258b380e179bfbd05afaad75f4e192fa17edf4babbba42e75cfc5f66cc1596a
- SHA512
  
  360d7b4a6cf9f9b06d6f4cc1d537e9bc6ef0fca2025286046b395911bb0317c94d1c69934b008195752cf1c3c1d12002ec57c7b9d92c0c442beb82c12eb3cc09
- SSDEEP
  
  384:MApc8m4e0GvQak4JI341C0abnk6hJPuM2DO:MApQr0GvdFJI34qTk6hJPfD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2