9569f8d9e041512cdeec2c0f422a940a06f62ee88649a816149f35b4f97cd0ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9569f8d9e041512cdeec2c0f422a940a06f62ee88649a816149f35b4f97cd0eeN
Size

165KB
Sample

241003-1qd7aayckq
MD5

03408a46bab382c5da622c22a5f8e810
SHA1

1fe66a4900ae6e7ba2b7665a6daee50d035b72af
SHA256

9569f8d9e041512cdeec2c0f422a940a06f62ee88649a816149f35b4f97cd0ee
SHA512

9f2ad7990a79c5da483e0d26b85a547ae0fa8d4a3a6e3718e418da612f7427ec5673f3c472d4b6fee90b72654b567566478dfc33842aaf4e739bd784ade5a8e2
SSDEEP

3072:34HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4p:oiI/PlY37ZLF4Ca6WABqBOvs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9569f8d9e041512cdeec2c0f422a940a06f62ee88649a816149f35b4f97cd0eeN
- Size
  
  165KB
- MD5
  
  03408a46bab382c5da622c22a5f8e810
- SHA1
  
  1fe66a4900ae6e7ba2b7665a6daee50d035b72af
- SHA256
  
  9569f8d9e041512cdeec2c0f422a940a06f62ee88649a816149f35b4f97cd0ee
- SHA512
  
  9f2ad7990a79c5da483e0d26b85a547ae0fa8d4a3a6e3718e418da612f7427ec5673f3c472d4b6fee90b72654b567566478dfc33842aaf4e739bd784ade5a8e2
- SSDEEP
  
  3072:34HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4p:oiI/PlY37ZLF4Ca6WABqBOvs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2