a2927af5e3b5ab1dea6b1514e510a6646146ac2fce5217ad55a401ccfd8f0d50 | Triage

Sharing

General

Target

2024-09-29_d086d8c7e6e877dc37ea9a0553e2e1f1_mafia
Size

536KB
Sample

240929-kk31fszakd
MD5

d086d8c7e6e877dc37ea9a0553e2e1f1
SHA1

ac153ef69f8059ba9664f92e4623a5a156784543
SHA256

a2927af5e3b5ab1dea6b1514e510a6646146ac2fce5217ad55a401ccfd8f0d50
SHA512

bdd5bc2785274077b32dad210b3c40346e081a74a843cb29a7daa42acc98c9fd92d70e7409e91595dfef444b3361e0cdc2306b8240d079c998193f6ae4687b7b
SSDEEP

12288:si4g+yU+0pAiv+p+aKvC6rDyEezj28Igh9F5DMovxUlvjosTdcG93D:si4gXn0pD+pjx6r+K8pr5PmlvjRhF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-29_d086d8c7e6e877dc37ea9a0553e2e1f1_mafia
- Size
  
  536KB
- MD5
  
  d086d8c7e6e877dc37ea9a0553e2e1f1
- SHA1
  
  ac153ef69f8059ba9664f92e4623a5a156784543
- SHA256
  
  a2927af5e3b5ab1dea6b1514e510a6646146ac2fce5217ad55a401ccfd8f0d50
- SHA512
  
  bdd5bc2785274077b32dad210b3c40346e081a74a843cb29a7daa42acc98c9fd92d70e7409e91595dfef444b3361e0cdc2306b8240d079c998193f6ae4687b7b
- SSDEEP
  
  12288:si4g+yU+0pAiv+p+aKvC6rDyEezj28Igh9F5DMovxUlvjosTdcG93D:si4gXn0pD+pjx6r+K8pr5PmlvjRhF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2