bca4d79949ee0c2f6cb84461a970c490e7ee43e6681030e6bcaf1a34c117385f | Triage

Sharing

General

Target

bca4d79949ee0c2f6cb84461a970c490e7ee43e6681030e6bcaf1a34c117385fN
Size

61KB
Sample

240919-rw14katbng
MD5

9c7da90986eeaf07e5d899bd35307450
SHA1

e69d725413303a6d95d9d7e090377ac15e25832e
SHA256

bca4d79949ee0c2f6cb84461a970c490e7ee43e6681030e6bcaf1a34c117385f
SHA512

510c4e03de730ad2afd878f9814ee37f27097a1fedd37036c4333ef7dbeef79af63f2dbf0507fbeefe0d14f2422bf357d7ef02d64f9dcb0a151c55d1b0740ba2
SSDEEP

384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlFHXTFDe:aePG5H8XhKD8ISZQjkgs1lxlFJC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bca4d79949ee0c2f6cb84461a970c490e7ee43e6681030e6bcaf1a34c117385fN
- Size
  
  61KB
- MD5
  
  9c7da90986eeaf07e5d899bd35307450
- SHA1
  
  e69d725413303a6d95d9d7e090377ac15e25832e
- SHA256
  
  bca4d79949ee0c2f6cb84461a970c490e7ee43e6681030e6bcaf1a34c117385f
- SHA512
  
  510c4e03de730ad2afd878f9814ee37f27097a1fedd37036c4333ef7dbeef79af63f2dbf0507fbeefe0d14f2422bf357d7ef02d64f9dcb0a151c55d1b0740ba2
- SSDEEP
  
  384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlFHXTFDe:aePG5H8XhKD8ISZQjkgs1lxlFJC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2