ff1e1ff01571c6f20c7c218cec71340198d73e5588d5b07b7f2d264bbf50c53d | Triage

Sharing

General

Target

ff1e1ff01571c6f20c7c218cec71340198d73e5588d5b07b7f2d264bbf50c53dN.exe
Size

28KB
Sample

241001-3yqamaxamp
MD5

540d40a1844557e751ed63920a1f85a0
SHA1

3247c6aae75d45ddebc0d5d32c98e769f9c35a70
SHA256

ff1e1ff01571c6f20c7c218cec71340198d73e5588d5b07b7f2d264bbf50c53d
SHA512

36fa3b771a36960cd06cc2c1b1378a7e0628afbe52f978ac1662eff4fe8069cccc6d9578d4a1223296a0ce960ec60210279fcd187ce27b580adc8677fe4fc0a0
SSDEEP

384:uDfuXMLcb8yc8cXFflgyK5jBMMYMSHG61zSjULZS+7lMqHe0UGeYWkgy34A:dpgAMMzSHG7ULY+7lyWeS5IA

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ff1e1ff01571c6f20c7c218cec71340198d73e5588d5b07b7f2d264bbf50c53dN.exe
- Size
  
  28KB
- MD5
  
  540d40a1844557e751ed63920a1f85a0
- SHA1
  
  3247c6aae75d45ddebc0d5d32c98e769f9c35a70
- SHA256
  
  ff1e1ff01571c6f20c7c218cec71340198d73e5588d5b07b7f2d264bbf50c53d
- SHA512
  
  36fa3b771a36960cd06cc2c1b1378a7e0628afbe52f978ac1662eff4fe8069cccc6d9578d4a1223296a0ce960ec60210279fcd187ce27b580adc8677fe4fc0a0
- SSDEEP
  
  384:uDfuXMLcb8yc8cXFflgyK5jBMMYMSHG61zSjULZS+7lMqHe0UGeYWkgy34A:dpgAMMzSHG7ULY+7lyWeS5IA
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2