9c7d971dad83d6f99b987b265c669ae1fb2d23d843622716e2b7c40a85ea84df | Triage

Sharing

General

Target

9c7d971dad83d6f99b987b265c669ae1fb2d23d843622716e2b7c40a85ea84df
Size

813KB
Sample

241005-bjj2hs1cme
MD5

0f1b431212600e62869a7e8e241fe22e
SHA1

ece27e0255c0a6165ce851d621b3c009b7b15a52
SHA256

9c7d971dad83d6f99b987b265c669ae1fb2d23d843622716e2b7c40a85ea84df
SHA512

da88ce627b3a6bb2ae38b12767b05d51565c28d6f69960266c7ccd3d9415bb507f61b4727353e7b4c0eef5ef36c39fea85e7944797d48d22095c1edefb6691da
SSDEEP

12288:kLxrFRn+oWo89PIjx8HqOJe5ZVkUHbU6Qhu5LexC4Utp9qPgjDkT3xX9959b99/B:MxrFBeo8U8HqOMaubR4u5C94NW3xSS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9c7d971dad83d6f99b987b265c669ae1fb2d23d843622716e2b7c40a85ea84df
- Size
  
  813KB
- MD5
  
  0f1b431212600e62869a7e8e241fe22e
- SHA1
  
  ece27e0255c0a6165ce851d621b3c009b7b15a52
- SHA256
  
  9c7d971dad83d6f99b987b265c669ae1fb2d23d843622716e2b7c40a85ea84df
- SHA512
  
  da88ce627b3a6bb2ae38b12767b05d51565c28d6f69960266c7ccd3d9415bb507f61b4727353e7b4c0eef5ef36c39fea85e7944797d48d22095c1edefb6691da
- SSDEEP
  
  12288:kLxrFRn+oWo89PIjx8HqOJe5ZVkUHbU6Qhu5LexC4Utp9qPgjDkT3xX9959b99/B:MxrFBeo8U8HqOMaubR4u5C94NW3xSS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2