5321c33ae8cedff0602be71ad4dd5534c4a220386507a4f73c9c28a34b83c1b8 | Triage

Sharing

General

Target

5321c33ae8cedff0602be71ad4dd5534c4a220386507a4f73c9c28a34b83c1b8N
Size

33KB
Sample

241003-f5r2gazhrg
MD5

910f7ec7d76823795ce34cc60e34fb30
SHA1

eccfa37437bc8eb5a7f92fde068acdd8ebf1f76a
SHA256

5321c33ae8cedff0602be71ad4dd5534c4a220386507a4f73c9c28a34b83c1b8
SHA512

69b46c64384f732fdea2179f7fcae29bde549f77eab7feb0de374d7e99b1520c289993e26e070e05599fe0acaec24bf16b4d512f5b23b88d7a462be0c9c7cc0d
SSDEEP

384:MIw07lRnDvTwFVmoDxRvYpXSCkChhE+1xudn5TiAt9BRgX3FGUDo1iXpE:Mp2FrwTmoTvjC0+ydn5GAX3+gUDogZE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  5321c33ae8cedff0602be71ad4dd5534c4a220386507a4f73c9c28a34b83c1b8N
- Size
  
  33KB
- MD5
  
  910f7ec7d76823795ce34cc60e34fb30
- SHA1
  
  eccfa37437bc8eb5a7f92fde068acdd8ebf1f76a
- SHA256
  
  5321c33ae8cedff0602be71ad4dd5534c4a220386507a4f73c9c28a34b83c1b8
- SHA512
  
  69b46c64384f732fdea2179f7fcae29bde549f77eab7feb0de374d7e99b1520c289993e26e070e05599fe0acaec24bf16b4d512f5b23b88d7a462be0c9c7cc0d
- SSDEEP
  
  384:MIw07lRnDvTwFVmoDxRvYpXSCkChhE+1xudn5TiAt9BRgX3FGUDo1iXpE:Mp2FrwTmoTvjC0+ydn5GAX3+gUDogZE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2