154df8f131e6ca0b79787980d26d2ad6bc85b8e791809a0cc6be1e5ba68f2a3b | Triage

Sharing

General

Target

154df8f131e6ca0b79787980d26d2ad6bc85b8e791809a0cc6be1e5ba68f2a3bN
Size

58KB
Sample

241005-fdj7jszhlc
MD5

6fd8a547d19d01d839e717fcb5b336b0
SHA1

b6293c78a38d0acd8a7dba815b199b88acf4d8dd
SHA256

154df8f131e6ca0b79787980d26d2ad6bc85b8e791809a0cc6be1e5ba68f2a3b
SHA512

c21354be0b709c9259eb478520948ef7de8c2b64810b78cd987e5e6c39cdc07fde70181a84907d498174d1bee0ce9301cfcd848758f5be477eaa957b22d37680
SSDEEP

768:MApQr0zvdFJI34iGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7iTn:MAaEJlosh7pWezEPJB+OeL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  154df8f131e6ca0b79787980d26d2ad6bc85b8e791809a0cc6be1e5ba68f2a3bN
- Size
  
  58KB
- MD5
  
  6fd8a547d19d01d839e717fcb5b336b0
- SHA1
  
  b6293c78a38d0acd8a7dba815b199b88acf4d8dd
- SHA256
  
  154df8f131e6ca0b79787980d26d2ad6bc85b8e791809a0cc6be1e5ba68f2a3b
- SHA512
  
  c21354be0b709c9259eb478520948ef7de8c2b64810b78cd987e5e6c39cdc07fde70181a84907d498174d1bee0ce9301cfcd848758f5be477eaa957b22d37680
- SSDEEP
  
  768:MApQr0zvdFJI34iGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7iTn:MAaEJlosh7pWezEPJB+OeL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2