a03435dff2d05423a277962a642b60f14924d589eeb2d2cb2519798e297d15eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a03435dff2d05423a277962a642b60f14924d589eeb2d2cb2519798e297d15eb
Size

31KB
Sample

240921-22g8rayhkl
MD5

8e4893a7ef1ddcd41c1d6b2be47b88a7
SHA1

bc05d918ca4113a2a597469f7b2344a7c4a00657
SHA256

a03435dff2d05423a277962a642b60f14924d589eeb2d2cb2519798e297d15eb
SHA512

b2aff25d707146144a8c066df1b234eb5aee6bc88903d501d549f1893415fe78dc6837b02b519f7b5aee4a9d54d58d28ced5a0b74a87c25660b7a3db81915920
SSDEEP

384:UMp3HU08dJlM1jpj0Z3g+4tdmuJc1PbJkOUcFnj+r9x5jHGuetJnQ7h/2S7g:UEHUblMVZ3kJOCaxletJnyh/2Wg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a03435dff2d05423a277962a642b60f14924d589eeb2d2cb2519798e297d15eb
- Size
  
  31KB
- MD5
  
  8e4893a7ef1ddcd41c1d6b2be47b88a7
- SHA1
  
  bc05d918ca4113a2a597469f7b2344a7c4a00657
- SHA256
  
  a03435dff2d05423a277962a642b60f14924d589eeb2d2cb2519798e297d15eb
- SHA512
  
  b2aff25d707146144a8c066df1b234eb5aee6bc88903d501d549f1893415fe78dc6837b02b519f7b5aee4a9d54d58d28ced5a0b74a87c25660b7a3db81915920
- SSDEEP
  
  384:UMp3HU08dJlM1jpj0Z3g+4tdmuJc1PbJkOUcFnj+r9x5jHGuetJnQ7h/2S7g:UEHUblMVZ3kJOCaxletJnyh/2Wg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2