a7896101d8beea4408f62c811d16fa5ff00ab8dbc8ae6a30fa501af8a1184cb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7896101d8beea4408f62c811d16fa5ff00ab8dbc8ae6a30fa501af8a1184cb0
Size

49KB
Sample

240930-bhq4fazdmp
MD5

94927bcafcc9f6707c415e3f12972d77
SHA1

c9d8ed6e5d2330f1f7cb6a4c6f23458c98ecf574
SHA256

a7896101d8beea4408f62c811d16fa5ff00ab8dbc8ae6a30fa501af8a1184cb0
SHA512

5efa337766a716beb4c74c9c0cbf15eee6f32b6d1a35dd37c35d8de6c40b106269a6020322b5b5b371654c43fac5fcd75941ac1afb969f45589cc0deef5ff681
SSDEEP

768:Q8eRHO9lFh0ul16sh7iQroCH/f+RjFBSuB2X0lv:Q9lOZ16sh7iQroCuRB0uZv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a7896101d8beea4408f62c811d16fa5ff00ab8dbc8ae6a30fa501af8a1184cb0
- Size
  
  49KB
- MD5
  
  94927bcafcc9f6707c415e3f12972d77
- SHA1
  
  c9d8ed6e5d2330f1f7cb6a4c6f23458c98ecf574
- SHA256
  
  a7896101d8beea4408f62c811d16fa5ff00ab8dbc8ae6a30fa501af8a1184cb0
- SHA512
  
  5efa337766a716beb4c74c9c0cbf15eee6f32b6d1a35dd37c35d8de6c40b106269a6020322b5b5b371654c43fac5fcd75941ac1afb969f45589cc0deef5ff681
- SSDEEP
  
  768:Q8eRHO9lFh0ul16sh7iQroCH/f+RjFBSuB2X0lv:Q9lOZ16sh7iQroCuRB0uZv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2