61a9952d6566f8aafa86b98d76610ba5e8b8c6ed71558e311d47c173c15a4b36 | Triage

Sharing

General

Target

61a9952d6566f8aafa86b98d76610ba5e8b8c6ed71558e311d47c173c15a4b36N
Size

42KB
Sample

241002-ejg4pswdkl
MD5

52c9a0229c3cc5db99998b34f43d9e50
SHA1

8fcf5b2b4a87975b7b870125ee9a4cb00c00e9b0
SHA256

61a9952d6566f8aafa86b98d76610ba5e8b8c6ed71558e311d47c173c15a4b36
SHA512

885c31e9b0487a655f12810ce9554031a3cb1693446819de605b3862af844bb431ba73ef515c924b2cf7405bcf663eb0277fff485f93b558c16c2d4e53ad3974
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3R:V6QFElP6n+gMQMOtEvwDpjyaHaX3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  61a9952d6566f8aafa86b98d76610ba5e8b8c6ed71558e311d47c173c15a4b36N
- Size
  
  42KB
- MD5
  
  52c9a0229c3cc5db99998b34f43d9e50
- SHA1
  
  8fcf5b2b4a87975b7b870125ee9a4cb00c00e9b0
- SHA256
  
  61a9952d6566f8aafa86b98d76610ba5e8b8c6ed71558e311d47c173c15a4b36
- SHA512
  
  885c31e9b0487a655f12810ce9554031a3cb1693446819de605b3862af844bb431ba73ef515c924b2cf7405bcf663eb0277fff485f93b558c16c2d4e53ad3974
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3R:V6QFElP6n+gMQMOtEvwDpjyaHaX3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2