644b08d376383fffa19d8fa60cf0dbbf5705fae34940c4ed9d52c50a04f28811 | Triage

Sharing

General

Target

644b08d376383fffa19d8fa60cf0dbbf5705fae34940c4ed9d52c50a04f28811N
Size

53KB
Sample

240919-hnvr5swcke
MD5

004e4ef66887ced58bfb878c30803730
SHA1

ae2ce774aedff69a9dd9eab6791dcc658e7e1900
SHA256

644b08d376383fffa19d8fa60cf0dbbf5705fae34940c4ed9d52c50a04f28811
SHA512

23770719f5a80111d468f5ab98d708aacc87516598b4fbc6b08dce72736b4ed37e98d6af8e034267d55efa98b9ee22002683f18547dd340894b5ab9e95cb1353
SSDEEP

1536:aNTg8r8QJR+kGFdO7Kp3StjEMjmLM3ztDJWZsXy4JzxPMk:C+kHJJjmLM3zRJWZsXy4JN

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  644b08d376383fffa19d8fa60cf0dbbf5705fae34940c4ed9d52c50a04f28811N
- Size
  
  53KB
- MD5
  
  004e4ef66887ced58bfb878c30803730
- SHA1
  
  ae2ce774aedff69a9dd9eab6791dcc658e7e1900
- SHA256
  
  644b08d376383fffa19d8fa60cf0dbbf5705fae34940c4ed9d52c50a04f28811
- SHA512
  
  23770719f5a80111d468f5ab98d708aacc87516598b4fbc6b08dce72736b4ed37e98d6af8e034267d55efa98b9ee22002683f18547dd340894b5ab9e95cb1353
- SSDEEP
  
  1536:aNTg8r8QJR+kGFdO7Kp3StjEMjmLM3ztDJWZsXy4JzxPMk:C+kHJJjmLM3zRJWZsXy4JN
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2