b31262ab3774c24326b070d1a6d451f4b36118f5382d772d598bc078009d7230 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b31262ab3774c24326b070d1a6d451f4b36118f5382d772d598bc078009d7230N.exe
Size

25KB
Sample

240925-jtlxvsxald
MD5

43c5b64bf8421ac64c13fe39d8d99120
SHA1

bef3e685ac85addc50a41d36be2c959a3f82cedc
SHA256

b31262ab3774c24326b070d1a6d451f4b36118f5382d772d598bc078009d7230
SHA512

c410679de4ceccb6c8552288e9e699853df55b6f505f906a7b2201024c6b52885f6ab94b61c94bf52040a3b6319f893ab1a6f9c5d3dd35f40a58f6ffd8c5d4b3
SSDEEP

768:jepHpMRuviPuvvaVeRMF71HYN/9sq7isXFHJ:ypHp25wvaVeR071HYV9rFJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b31262ab3774c24326b070d1a6d451f4b36118f5382d772d598bc078009d7230N.exe
- Size
  
  25KB
- MD5
  
  43c5b64bf8421ac64c13fe39d8d99120
- SHA1
  
  bef3e685ac85addc50a41d36be2c959a3f82cedc
- SHA256
  
  b31262ab3774c24326b070d1a6d451f4b36118f5382d772d598bc078009d7230
- SHA512
  
  c410679de4ceccb6c8552288e9e699853df55b6f505f906a7b2201024c6b52885f6ab94b61c94bf52040a3b6319f893ab1a6f9c5d3dd35f40a58f6ffd8c5d4b3
- SSDEEP
  
  768:jepHpMRuviPuvvaVeRMF71HYN/9sq7isXFHJ:ypHp25wvaVeR071HYV9rFJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2