5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390

Analysis

max time kernel
91s
max time network
92s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
01/10/2024, 08:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390N.exe
Size

20KB
MD5

faafb9448f95ce8d6ecb2db2e9f36b70
SHA1

63c72060a36e6dbd413c5b01e68258148562536c
SHA256

5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390
SHA512

8a87f2c3a375cc6a13889977f755384a9b2e5bebf58c65eeda2b040792e69c578772a2b537676b8c24b68d54a92364a3ead554d7c2fac78140d22d1005d9eed3
SSDEEP

192:9l4lhjNgIrKRxXZK0GMT6n1nUWsP1oyWibqQ9Z1:zSZgl/XZv9anU31P

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390N.exe

C:\Users\Admin\AppData\Local\Temp\5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390N.exe
"C:\Users\Admin\AppData\Local\Temp\5ba513983c458051ca8e9c38e3b0a6d17e0191a8d2416e796e40cf8732c88390N.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:3268

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads