5ce44db6ae27da319e7c77e87a694219afcbe9b4f1f688c79fa4463d69662945 | Triage

Sharing

General

Target

5ce44db6ae27da319e7c77e87a694219afcbe9b4f1f688c79fa4463d69662945N
Size

47KB
Sample

240930-qb37ra1cke
MD5

94d5a90f10aa0bd53001c10a2572df70
SHA1

e4a090d491b409592702ed8d5c57ce6853e710e4
SHA256

5ce44db6ae27da319e7c77e87a694219afcbe9b4f1f688c79fa4463d69662945
SHA512

e478e0444c541d43bca5b3a49c380271d5ce1e25a0f04907a053230499cc21776fb07fdeeb96da8433658d8357fae5c7c55099c61986600c4d71d5605100e27c
SSDEEP

768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr8:y6QFElP6n+gMQMOtEvwDpjbizbR9XwzA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5ce44db6ae27da319e7c77e87a694219afcbe9b4f1f688c79fa4463d69662945N
- Size
  
  47KB
- MD5
  
  94d5a90f10aa0bd53001c10a2572df70
- SHA1
  
  e4a090d491b409592702ed8d5c57ce6853e710e4
- SHA256
  
  5ce44db6ae27da319e7c77e87a694219afcbe9b4f1f688c79fa4463d69662945
- SHA512
  
  e478e0444c541d43bca5b3a49c380271d5ce1e25a0f04907a053230499cc21776fb07fdeeb96da8433658d8357fae5c7c55099c61986600c4d71d5605100e27c
- SSDEEP
  
  768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr8:y6QFElP6n+gMQMOtEvwDpjbizbR9XwzA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2