8e21add1196d088d8b1cdf44730e38074ff0bdd0ec48ed66c2b795627b6779f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8e21add1196d088d8b1cdf44730e38074ff0bdd0ec48ed66c2b795627b6779f8N
Size

44KB
Sample

241005-d8akgstbqm
MD5

6c2bb01656de45effd383b8b2894c3e0
SHA1

55efa74edfe49936ae7f7d1ffdbf9a5a216bd3f2
SHA256

8e21add1196d088d8b1cdf44730e38074ff0bdd0ec48ed66c2b795627b6779f8
SHA512

a1bca535eb0e45b97c3ed34630fff5a02b94e2dfc127e82793173c9a14c3d7c1ab9a0cfc456bad59aa8bc5cbe40277b47df929d5333c04314bc86c0902ed01b3
SSDEEP

768:+8eRH+9lFh0ul16sh7iQroCHmf+RjFBSuB2XJD+mU:+9l+Z16sh7iQroChRB0uED+mU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8e21add1196d088d8b1cdf44730e38074ff0bdd0ec48ed66c2b795627b6779f8N
- Size
  
  44KB
- MD5
  
  6c2bb01656de45effd383b8b2894c3e0
- SHA1
  
  55efa74edfe49936ae7f7d1ffdbf9a5a216bd3f2
- SHA256
  
  8e21add1196d088d8b1cdf44730e38074ff0bdd0ec48ed66c2b795627b6779f8
- SHA512
  
  a1bca535eb0e45b97c3ed34630fff5a02b94e2dfc127e82793173c9a14c3d7c1ab9a0cfc456bad59aa8bc5cbe40277b47df929d5333c04314bc86c0902ed01b3
- SSDEEP
  
  768:+8eRH+9lFh0ul16sh7iQroCHmf+RjFBSuB2XJD+mU:+9l+Z16sh7iQroChRB0uED+mU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2