da38da1df4532d824dc4db6fa8b19c30613b36907d3a921af4f5aa09af2f3089 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

da38da1df4532d824dc4db6fa8b19c30613b36907d3a921af4f5aa09af2f3089N
Size

62KB
Sample

240927-qsdcnaxcjb
MD5

201f17b46725d106632c400495cca170
SHA1

7b8cc969ac854f4b8e6096d49b46d26fdb427d50
SHA256

da38da1df4532d824dc4db6fa8b19c30613b36907d3a921af4f5aa09af2f3089
SHA512

719945231b51e23d05adc064474cdbab389aa34204bd947323eb9b556715911f069536dc36ffbe3f4d6fffbf5cc3d68d0198b571ba5b1395b307245f7a4ac05a
SSDEEP

768:JKe7zUTWVlTVV0uIaOoRPmTPsED3VK2+ZtyOjgO4r9vFAg2rqB47KI62NS26+:JKe7zUm9FIaOHYTjipvF2SIVNSC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  da38da1df4532d824dc4db6fa8b19c30613b36907d3a921af4f5aa09af2f3089N
- Size
  
  62KB
- MD5
  
  201f17b46725d106632c400495cca170
- SHA1
  
  7b8cc969ac854f4b8e6096d49b46d26fdb427d50
- SHA256
  
  da38da1df4532d824dc4db6fa8b19c30613b36907d3a921af4f5aa09af2f3089
- SHA512
  
  719945231b51e23d05adc064474cdbab389aa34204bd947323eb9b556715911f069536dc36ffbe3f4d6fffbf5cc3d68d0198b571ba5b1395b307245f7a4ac05a
- SSDEEP
  
  768:JKe7zUTWVlTVV0uIaOoRPmTPsED3VK2+ZtyOjgO4r9vFAg2rqB47KI62NS26+:JKe7zUm9FIaOHYTjipvF2SIVNSC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2