142e7a95f410a9a62084a4a2a34eef49d0a24f448aaab9d2da44d96dc3ba866f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

142e7a95f410a9a62084a4a2a34eef49d0a24f448aaab9d2da44d96dc3ba866f
Size

481KB
Sample

240921-j61xjssgml
MD5

eab6fd7a1952b6c211c560f6c88bbe38
SHA1

f42d468e5e457733bd46f4065dcd9e2589bca93e
SHA256

142e7a95f410a9a62084a4a2a34eef49d0a24f448aaab9d2da44d96dc3ba866f
SHA512

0c2f3a0d8ef76d0c8a1b493f3152daf00aab6714abe1d511a5d650f34791c8c7c0a59bb9f3416d9c5b2ad6694c265f06d50af40ea1a34939fb2938beeb6eb8a3
SSDEEP

12288:CnveZxdBk/Lp76Wb+QbTQkRw7fMYSC92RXOH4mNCG:CnGZxdFWb+QbzRKfhSC92l5mNCG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  142e7a95f410a9a62084a4a2a34eef49d0a24f448aaab9d2da44d96dc3ba866f
- Size
  
  481KB
- MD5
  
  eab6fd7a1952b6c211c560f6c88bbe38
- SHA1
  
  f42d468e5e457733bd46f4065dcd9e2589bca93e
- SHA256
  
  142e7a95f410a9a62084a4a2a34eef49d0a24f448aaab9d2da44d96dc3ba866f
- SHA512
  
  0c2f3a0d8ef76d0c8a1b493f3152daf00aab6714abe1d511a5d650f34791c8c7c0a59bb9f3416d9c5b2ad6694c265f06d50af40ea1a34939fb2938beeb6eb8a3
- SSDEEP
  
  12288:CnveZxdBk/Lp76Wb+QbTQkRw7fMYSC92RXOH4mNCG:CnGZxdFWb+QbzRKfhSC92l5mNCG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2