424b2d5bc1b86928b6ec0736bf0864d18afd0b5b6b38172fa4b8a37d837332cb | Triage

Sharing

General

Target

424b2d5bc1b86928b6ec0736bf0864d18afd0b5b6b38172fa4b8a37d837332cbN
Size

44KB
Sample

240919-exhbma1ckl
MD5

aeff9728cb6860da466539424a5be340
SHA1

ebab43158bdaffd463160ef5b2e66880cf8285cf
SHA256

424b2d5bc1b86928b6ec0736bf0864d18afd0b5b6b38172fa4b8a37d837332cb
SHA512

c3a1a912c7f9c670f0acba7aac55b0bebadb2d385dd74c082433a440773e8dac5aceea88d048078fe53dbab78c8ee5ef327dc654ee2ac2a1615ab744d3cd4539
SSDEEP

768:+8eRH+9lFh0ul16sh7iQroCHmf+RjFBSuB2XJD+mR:+9l+Z16sh7iQroChRB0uED+mR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  424b2d5bc1b86928b6ec0736bf0864d18afd0b5b6b38172fa4b8a37d837332cbN
- Size
  
  44KB
- MD5
  
  aeff9728cb6860da466539424a5be340
- SHA1
  
  ebab43158bdaffd463160ef5b2e66880cf8285cf
- SHA256
  
  424b2d5bc1b86928b6ec0736bf0864d18afd0b5b6b38172fa4b8a37d837332cb
- SHA512
  
  c3a1a912c7f9c670f0acba7aac55b0bebadb2d385dd74c082433a440773e8dac5aceea88d048078fe53dbab78c8ee5ef327dc654ee2ac2a1615ab744d3cd4539
- SSDEEP
  
  768:+8eRH+9lFh0ul16sh7iQroCHmf+RjFBSuB2XJD+mR:+9l+Z16sh7iQroChRB0uED+mR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2