2e496b14ff94bb8ffa22fdef3d5dc6db5965b46feaeedf7c6ab95c37a63bad0c | Triage

Sharing

General

Target

2e496b14ff94bb8ffa22fdef3d5dc6db5965b46feaeedf7c6ab95c37a63bad0cN
Size

201KB
Sample

240927-exfsssxgjh
MD5

d1f170ca9c06ff6a5d069334236473d0
SHA1

439413357e79a1da3ac08fe5eada82fb15ec1f00
SHA256

2e496b14ff94bb8ffa22fdef3d5dc6db5965b46feaeedf7c6ab95c37a63bad0c
SHA512

5b8e753627fe2830024be202d2300b0bb2e7d0d7227fffeb61a04d11e462294e94fe94e2f87f41b089dac4c9eb8cac4e7ebc3491e2e1988bcc8efba993446e2d
SSDEEP

1536:mHtNFk+5wIaVanPSE8GHo7P1A4xVz28nuton/ZIqiSn:mdk+xagnPm/P1A4xVzKon/Nn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2e496b14ff94bb8ffa22fdef3d5dc6db5965b46feaeedf7c6ab95c37a63bad0cN
- Size
  
  201KB
- MD5
  
  d1f170ca9c06ff6a5d069334236473d0
- SHA1
  
  439413357e79a1da3ac08fe5eada82fb15ec1f00
- SHA256
  
  2e496b14ff94bb8ffa22fdef3d5dc6db5965b46feaeedf7c6ab95c37a63bad0c
- SHA512
  
  5b8e753627fe2830024be202d2300b0bb2e7d0d7227fffeb61a04d11e462294e94fe94e2f87f41b089dac4c9eb8cac4e7ebc3491e2e1988bcc8efba993446e2d
- SSDEEP
  
  1536:mHtNFk+5wIaVanPSE8GHo7P1A4xVz28nuton/ZIqiSn:mdk+xagnPm/P1A4xVzKon/Nn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2