4fdef3aee5b33076f00403637a415a17f5ccf1548b27f3c71fe9662c8c8068ea | Triage

Sharing

General

Target

4fdef3aee5b33076f00403637a415a17f5ccf1548b27f3c71fe9662c8c8068eaN
Size

42KB
Sample

241002-bstmbazfml
MD5

89cae0664fd253c49c1d2e0021f46950
SHA1

d6a6f2a73fd8c16dcbc6cda9d1ffebf0d1f0ede3
SHA256

4fdef3aee5b33076f00403637a415a17f5ccf1548b27f3c71fe9662c8c8068ea
SHA512

79ea2da2976d42e7b5cc558e0e66a65b820de27159c92f65b7c89065e27e79f32cba114d8d4b6e3079906426691e171b3744fa008ba5fc5d356fe01b6d745000
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhbCi44Jin:6j+1NMOtEvwDpjr8dx47

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4fdef3aee5b33076f00403637a415a17f5ccf1548b27f3c71fe9662c8c8068eaN
- Size
  
  42KB
- MD5
  
  89cae0664fd253c49c1d2e0021f46950
- SHA1
  
  d6a6f2a73fd8c16dcbc6cda9d1ffebf0d1f0ede3
- SHA256
  
  4fdef3aee5b33076f00403637a415a17f5ccf1548b27f3c71fe9662c8c8068ea
- SHA512
  
  79ea2da2976d42e7b5cc558e0e66a65b820de27159c92f65b7c89065e27e79f32cba114d8d4b6e3079906426691e171b3744fa008ba5fc5d356fe01b6d745000
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhbCi44Jin:6j+1NMOtEvwDpjr8dx47
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2