ed2dfe2748a9e10b421df165bcfbcae74b63ccd3b7b7cc232b0ddaf6edf5ee23 | Triage

Sharing

General

Target

ed2dfe2748a9e10b421df165bcfbcae74b63ccd3b7b7cc232b0ddaf6edf5ee23N
Size

82KB
Sample

240919-eckw1szcql
MD5

ff4ee1432e7ce0724b12c0b5962725d0
SHA1

6562d250daf92602583cf422050114b2460024c4
SHA256

ed2dfe2748a9e10b421df165bcfbcae74b63ccd3b7b7cc232b0ddaf6edf5ee23
SHA512

cb223b40ba0db735125f012fd37c86c9839cebe56d8ff9d64919718676e1f31b4ff4f9b5a8436c476ea5e3910520d0bffbd1e85c83e1b1df3a439fac59457ffd
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzMRDBI:ZzFbxmLPWQMOtEvwDpj386Sj/Rsoq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ed2dfe2748a9e10b421df165bcfbcae74b63ccd3b7b7cc232b0ddaf6edf5ee23N
- Size
  
  82KB
- MD5
  
  ff4ee1432e7ce0724b12c0b5962725d0
- SHA1
  
  6562d250daf92602583cf422050114b2460024c4
- SHA256
  
  ed2dfe2748a9e10b421df165bcfbcae74b63ccd3b7b7cc232b0ddaf6edf5ee23
- SHA512
  
  cb223b40ba0db735125f012fd37c86c9839cebe56d8ff9d64919718676e1f31b4ff4f9b5a8436c476ea5e3910520d0bffbd1e85c83e1b1df3a439fac59457ffd
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8z2iaSIO/RvDQeduJHqqnzMRDBI:ZzFbxmLPWQMOtEvwDpj386Sj/Rsoq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2