f31de201779b17b6fd74152d69dc59fc7d0b784b576c70b52d2dd58ac39e7bdd | Triage

Sharing

General

Target

f31de201779b17b6fd74152d69dc59fc7d0b784b576c70b52d2dd58ac39e7bddN
Size

27KB
Sample

241004-jvdymssfnk
MD5

8525d6b95c3ced51b1b55bcc68d28640
SHA1

d181a3890e1ae0210670ee32b34d9da43b77fe4a
SHA256

f31de201779b17b6fd74152d69dc59fc7d0b784b576c70b52d2dd58ac39e7bdd
SHA512

c27429b864b14216b473a21c4c1a3ea48844d87cbda5e4e7d4cc32cb58ed5048264519a757f8c5693cbb66deba61fa997333d768f1087ea06f427cea75533bc9
SSDEEP

384:Xz8qWI9TtGINz8PUAZL5G2WdLxSiPujRS9XQTXBupLv8:XYqTTIINYPJZLOdLxxWjRSdQTXBu1k

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f31de201779b17b6fd74152d69dc59fc7d0b784b576c70b52d2dd58ac39e7bddN
- Size
  
  27KB
- MD5
  
  8525d6b95c3ced51b1b55bcc68d28640
- SHA1
  
  d181a3890e1ae0210670ee32b34d9da43b77fe4a
- SHA256
  
  f31de201779b17b6fd74152d69dc59fc7d0b784b576c70b52d2dd58ac39e7bdd
- SHA512
  
  c27429b864b14216b473a21c4c1a3ea48844d87cbda5e4e7d4cc32cb58ed5048264519a757f8c5693cbb66deba61fa997333d768f1087ea06f427cea75533bc9
- SSDEEP
  
  384:Xz8qWI9TtGINz8PUAZL5G2WdLxSiPujRS9XQTXBupLv8:XYqTTIINYPJZLOdLxxWjRSdQTXBu1k
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2