fe1ec7c12537e2841fe06830bfef6747f4b920be53a8184d53ee86e4c670de4e | Triage

Sharing

General

Target

fe1ec7c12537e2841fe06830bfef6747f4b920be53a8184d53ee86e4c670de4e
Size

85KB
Sample

240919-ednz3azblb
MD5

a5db380cf2bc60afc6c79b20af37fadc
SHA1

766536eddd3972092f29b42b9347611c9553b30c
SHA256

fe1ec7c12537e2841fe06830bfef6747f4b920be53a8184d53ee86e4c670de4e
SHA512

56e54d5af22f1205d79dcc0cedbb3e4c2d0f9b5199e3f12cfbcaa9bf9e625d81f946cbd8e7aa67a7cbed762fcef2e68f340fe6865629feed088c23bd018258aa
SSDEEP

1536:qk4e0VCI33T++C1uaeN6ytQteVmhwHfAX3:hNO3T30

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fe1ec7c12537e2841fe06830bfef6747f4b920be53a8184d53ee86e4c670de4e
- Size
  
  85KB
- MD5
  
  a5db380cf2bc60afc6c79b20af37fadc
- SHA1
  
  766536eddd3972092f29b42b9347611c9553b30c
- SHA256
  
  fe1ec7c12537e2841fe06830bfef6747f4b920be53a8184d53ee86e4c670de4e
- SHA512
  
  56e54d5af22f1205d79dcc0cedbb3e4c2d0f9b5199e3f12cfbcaa9bf9e625d81f946cbd8e7aa67a7cbed762fcef2e68f340fe6865629feed088c23bd018258aa
- SSDEEP
  
  1536:qk4e0VCI33T++C1uaeN6ytQteVmhwHfAX3:hNO3T30
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2