d200762ed8accd4fd7a2d1e7209b2b54fdb6ea782eb6cff99fc570cfeecd4b4a | Triage

Sharing

General

Target

d200762ed8accd4fd7a2d1e7209b2b54fdb6ea782eb6cff99fc570cfeecd4b4aN.exe
Size

5KB
Sample

240925-nwr9wawhpc
MD5

58e38fabdef2dda4169e496f1299e0d0
SHA1

95dcd4ebce0d3ddd1d12e87e7fb2f26ed8cc3b63
SHA256

d200762ed8accd4fd7a2d1e7209b2b54fdb6ea782eb6cff99fc570cfeecd4b4a
SHA512

8b4e82a20efc8752c471a26488e5858ae503f49cef163045d9848a74ffffe7dab49fe408a2529899a5116f44d61e9b2a573db7423a15204c01faa317a3ec7c92
SSDEEP

96:ZSv4mQMKh9ctgCVRoKinKymV44zZjwxl7mo58f0qfY/:rmQMKsnzinKfzzRwXZa/A/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d200762ed8accd4fd7a2d1e7209b2b54fdb6ea782eb6cff99fc570cfeecd4b4aN.exe
- Size
  
  5KB
- MD5
  
  58e38fabdef2dda4169e496f1299e0d0
- SHA1
  
  95dcd4ebce0d3ddd1d12e87e7fb2f26ed8cc3b63
- SHA256
  
  d200762ed8accd4fd7a2d1e7209b2b54fdb6ea782eb6cff99fc570cfeecd4b4a
- SHA512
  
  8b4e82a20efc8752c471a26488e5858ae503f49cef163045d9848a74ffffe7dab49fe408a2529899a5116f44d61e9b2a573db7423a15204c01faa317a3ec7c92
- SSDEEP
  
  96:ZSv4mQMKh9ctgCVRoKinKymV44zZjwxl7mo58f0qfY/:rmQMKsnzinKfzzRwXZa/A/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2