a1861587ab0fa91f5fcf052070fbd8da503cb43ecde4c8823bc1bb88c04de2a1 | Triage

Sharing

General

Target

a1861587ab0fa91f5fcf052070fbd8da503cb43ecde4c8823bc1bb88c04de2a1N
Size

36KB
Sample

240919-lss1wssgqm
MD5

fcee2a5de34dfcc496be701844024260
SHA1

261e19e9caac23de92995d0569f7cc91e588e890
SHA256

a1861587ab0fa91f5fcf052070fbd8da503cb43ecde4c8823bc1bb88c04de2a1
SHA512

da394784084d47ee0ec7a89329afd45f3e2c3e61dbd55f2bc41e07c37c0d14ab8b1586ce80edc8d5e91d59826aa1a8ed613798a5f15af56d221b5a44415e9de8
SSDEEP

384:MApc8m4e0ovQak4JI341CLHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHk:MApQr0ovdFJI34eGxusOy9RIQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a1861587ab0fa91f5fcf052070fbd8da503cb43ecde4c8823bc1bb88c04de2a1N
- Size
  
  36KB
- MD5
  
  fcee2a5de34dfcc496be701844024260
- SHA1
  
  261e19e9caac23de92995d0569f7cc91e588e890
- SHA256
  
  a1861587ab0fa91f5fcf052070fbd8da503cb43ecde4c8823bc1bb88c04de2a1
- SHA512
  
  da394784084d47ee0ec7a89329afd45f3e2c3e61dbd55f2bc41e07c37c0d14ab8b1586ce80edc8d5e91d59826aa1a8ed613798a5f15af56d221b5a44415e9de8
- SSDEEP
  
  384:MApc8m4e0ovQak4JI341CLHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHk:MApQr0ovdFJI34eGxusOy9RIQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2