1a5142a679902e540891f36d6f0a1ffee36e87af8a1b2da3260f8b0d405d9291 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a5142a679902e540891f36d6f0a1ffee36e87af8a1b2da3260f8b0d405d9291N
Size

61KB
Sample

240930-scn6bsvgqe
MD5

7a9eb5456dde42271aed124abbc94890
SHA1

d44de1bd3c99712fdeb8748dca2791ba3a9bcd1f
SHA256

1a5142a679902e540891f36d6f0a1ffee36e87af8a1b2da3260f8b0d405d9291
SHA512

4f719b69339aa7972d5a604b80558c363b13561c6b2a3646d0d33edee5213026bc565f998522cb9035f8b33c1c58e6af6f8b6c0bec89ba3b20dc27ad5a7a7a29
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7TZ:MAaAJlzsh7pWezEPJB+O/Z

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1a5142a679902e540891f36d6f0a1ffee36e87af8a1b2da3260f8b0d405d9291N
- Size
  
  61KB
- MD5
  
  7a9eb5456dde42271aed124abbc94890
- SHA1
  
  d44de1bd3c99712fdeb8748dca2791ba3a9bcd1f
- SHA256
  
  1a5142a679902e540891f36d6f0a1ffee36e87af8a1b2da3260f8b0d405d9291
- SHA512
  
  4f719b69339aa7972d5a604b80558c363b13561c6b2a3646d0d33edee5213026bc565f998522cb9035f8b33c1c58e6af6f8b6c0bec89ba3b20dc27ad5a7a7a29
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7TZ:MAaAJlzsh7pWezEPJB+O/Z
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2