4fd7f137b11f98d74d9d400f9c7abe2a7bb626ce42f733df2928e1bdf86a8c7c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4fd7f137b11f98d74d9d400f9c7abe2a7bb626ce42f733df2928e1bdf86a8c7cN.exe
Size

40KB
Sample

240925-q8x21ayerk
MD5

39efc04d64e20f21df5be7222697b250
SHA1

7d209026eab534187213b22333d33c60a3c42c0b
SHA256

4fd7f137b11f98d74d9d400f9c7abe2a7bb626ce42f733df2928e1bdf86a8c7c
SHA512

247c0f1c904257cb665f36222aa6e3f14e0a3c76c46871127da29690d947f4b1a75e547737f415f5fdab3a5ca81eda57bde96e9e8ae950819d6051b4ccc7dc4c
SSDEEP

768:T4j7YBkweh63h7iQroC8XtgZnRl2zVBDj9sW3doLobv7ACCjwGeHhLueOsYUW:sj8vs63h7iQroCgtg4KQsh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fd7f137b11f98d74d9d400f9c7abe2a7bb626ce42f733df2928e1bdf86a8c7cN.exe
- Size
  
  40KB
- MD5
  
  39efc04d64e20f21df5be7222697b250
- SHA1
  
  7d209026eab534187213b22333d33c60a3c42c0b
- SHA256
  
  4fd7f137b11f98d74d9d400f9c7abe2a7bb626ce42f733df2928e1bdf86a8c7c
- SHA512
  
  247c0f1c904257cb665f36222aa6e3f14e0a3c76c46871127da29690d947f4b1a75e547737f415f5fdab3a5ca81eda57bde96e9e8ae950819d6051b4ccc7dc4c
- SSDEEP
  
  768:T4j7YBkweh63h7iQroC8XtgZnRl2zVBDj9sW3doLobv7ACCjwGeHhLueOsYUW:sj8vs63h7iQroCgtg4KQsh
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2