5fef71a315e7337c44fb023335c3f735d65bf1ddb08228031388eca1dfa9f480 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5fef71a315e7337c44fb023335c3f735d65bf1ddb08228031388eca1dfa9f480N
Size

30KB
Sample

241002-bgh2fatbjf
MD5

b71eb70874c0c4eb3363b39b373c7f40
SHA1

234bb2d486bd74218a9604f4c92f1625e07c12d3
SHA256

5fef71a315e7337c44fb023335c3f735d65bf1ddb08228031388eca1dfa9f480
SHA512

f635bd4abe1e95008af0b2ecdb1f9d0ec0888e4c67e910bb95f367992070f1e531d5c217d5e33103f42b07abee14e65d9e118c735ccaa553f7a568eb662cdad6
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1o:X6QFElP6n+gJQMOtEvwDpjBn+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5fef71a315e7337c44fb023335c3f735d65bf1ddb08228031388eca1dfa9f480N
- Size
  
  30KB
- MD5
  
  b71eb70874c0c4eb3363b39b373c7f40
- SHA1
  
  234bb2d486bd74218a9604f4c92f1625e07c12d3
- SHA256
  
  5fef71a315e7337c44fb023335c3f735d65bf1ddb08228031388eca1dfa9f480
- SHA512
  
  f635bd4abe1e95008af0b2ecdb1f9d0ec0888e4c67e910bb95f367992070f1e531d5c217d5e33103f42b07abee14e65d9e118c735ccaa553f7a568eb662cdad6
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1o:X6QFElP6n+gJQMOtEvwDpjBn+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2